majic-ansible-roles Changeset

Changeset - 884beb9a0e1d

Parent rev.

Child rev.

[Not reviewed]

0 7 0

Branko Majic (branko) - 9 years ago 2015-05-31 21:53:01
branko@majic.rs

MAR-5: Fixed a typo in docs for test site (wrong filename path for certificate). Added encryption_key option to certtool templates in test site in order to have key encipherment key usage in resulting certificates (otherwise Thunderbird, for example, won't be able to connect to SMTP server).

7 files changed with 31 insertions and 1 deletions:

docs/testsite.rst

testsite/tls/templates/ldap.example.com_ldap.cfg

testsite/tls/templates/mail.example.com_smtp.cfg

testsite/tls/templates/phpinfo.example.com_https.cfg

testsite/tls/templates/web.example.com_https.cfg

testsite/tls/templates/wsgi.example.com_https.cfg

testsite/tls/templates/xmpp.example.com_xmpp.cfg

0 comments (0 inline, 0 general)

docs/testsite.rst

➞

Show inline comments

      be ``web.example.com``)
    - ``testsite/tls/web.example.com_https.pem`` (subject alternative name should
      be ``web.example.com``)
-   - ``testsite/tls/phpinffo.example.com_https.pem`` (subject alternative name
+   - ``testsite/tls/phpinfo.example.com_https.pem`` (subject alternative name
      should be ``phpinfo.example.com``)
    - ``testsite/tls/wsgi.example.com_https.pem`` (subject alternative name
      should be ``wsgi.example.com``)

testsite/tls/templates/ldap.example.com_ldap.cfg

➞

Show inline comments

@@ @@ -25,3 +25,8 @@ tls_www_server @@
 # Whether this certificate will be used to sign data (needed
 # in TLS DHE ciphersuites).
 signing_key
 # Whether this certificate will be used to encrypt data (needed
 # in TLS RSA ciphersuites). Note that it is preferred to use different
 # keys for encryption and signing.
 encryption_key

testsite/tls/templates/mail.example.com_smtp.cfg

➞

Show inline comments

@@ @@ -25,3 +25,8 @@ tls_www_server @@
 # Whether this certificate will be used to sign data (needed
 # in TLS DHE ciphersuites).
 signing_key
 # Whether this certificate will be used to encrypt data (needed
 # in TLS RSA ciphersuites). Note that it is preferred to use different
 # keys for encryption and signing.
 encryption_key

testsite/tls/templates/phpinfo.example.com_https.cfg

➞

Show inline comments

@@ @@ -25,3 +25,8 @@ tls_www_server @@
 # Whether this certificate will be used to sign data (needed
 # in TLS DHE ciphersuites).
 signing_key
 # Whether this certificate will be used to encrypt data (needed
 # in TLS RSA ciphersuites). Note that it is preferred to use different
 # keys for encryption and signing.
 encryption_key

testsite/tls/templates/web.example.com_https.cfg

➞

Show inline comments

@@ @@ -25,3 +25,8 @@ tls_www_server @@
 # Whether this certificate will be used to sign data (needed
 # in TLS DHE ciphersuites).
 signing_key
 # Whether this certificate will be used to encrypt data (needed
 # in TLS RSA ciphersuites). Note that it is preferred to use different
 # keys for encryption and signing.
 encryption_key

testsite/tls/templates/wsgi.example.com_https.cfg

➞

Show inline comments

@@ @@ -25,3 +25,8 @@ tls_www_server @@
 # Whether this certificate will be used to sign data (needed
 # in TLS DHE ciphersuites).
 signing_key
 # Whether this certificate will be used to encrypt data (needed
 # in TLS RSA ciphersuites). Note that it is preferred to use different
 # keys for encryption and signing.
 encryption_key

testsite/tls/templates/xmpp.example.com_xmpp.cfg

➞

Show inline comments

@@ @@ -25,3 +25,8 @@ tls_www_server @@
 # Whether this certificate will be used to sign data (needed
 # in TLS DHE ciphersuites).
 signing_key
 # Whether this certificate will be used to encrypt data (needed
 # in TLS RSA ciphersuites). Note that it is preferred to use different
 # keys for encryption and signing.
 encryption_key

0 comments (0 inline, 0 general)