diff options
author | mrxx | 2015-10-07 04:09:54 +0200 |
---|---|---|
committer | mrxx | 2015-10-07 04:09:54 +0200 |
commit | 722fd77dda1d8ff95da0e1f372eb13f61a138674 (patch) | |
tree | d71236fed83d947104a08815bdae16daf2e3c7f9 /pure-ftpd.install | |
parent | 54941deed781df6a2ea50345340b2c3bab670a2c (diff) | |
download | aur-722fd77dda1d8ff95da0e1f372eb13f61a138674.tar.gz |
Added certificate generation at install time
Diffstat (limited to 'pure-ftpd.install')
-rw-r--r-- | pure-ftpd.install | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/pure-ftpd.install b/pure-ftpd.install new file mode 100644 index 000000000000..54d3238a0256 --- /dev/null +++ b/pure-ftpd.install @@ -0,0 +1,29 @@ +post_install() +{ + if [ ! -f /etc/ssl/private/pure-ftpd-dhparams.pem ]; then + echo + openssl dhparam -out /etc/ssl/private/pure-ftpd-dhparams.pem 2048 + chmod 600 /etc/ssl/private/pure-ftpd-dhparams.pem + fi + + if [ ! -f /etc/ssl/private/pure-ftpd.pem ]; then + echo + openssl req -x509 -nodes -newkey rsa:2048 -sha256 -keyout /etc/ssl/private/pure-ftpd.pem -out /etc/ssl/private/pure-ftpd.pem -days 3650 -subj "/C=US/ST=California/L=San Francisco/O=FD/CN=$(hostname -f)" + echo + echo "A self-signed TLS certificate has been generated for you." + echo + echo "You can generate a new one with the following commands (as root):" + echo "openssl req -x509 -nodes -newkey rsa:2048 -sha256 -keyout /etc/ssl/private/pure-ftpd.pem -out /etc/ssl/private/pure-ftpd.pem -days 365" + echo "chmod 600 /etc/ssl/private/pure-ftpd.pem" + echo + echo "Note: The Common Name (CN) should be exactly the FQDN of the server." + echo "The validity can be extended by increasing the '-days' parameter value." + echo + echo "Then restart the ftp service: systemctl restart pure-ftpd.service" + echo + fi +} + +post_upgrade() { + post_install +} |