Login | Register
My pages Projects Community openCollabNet

Discussions > cvs > CVS update [jwbernin-postgres-branch]: /current/docs/

Project highlights: Stable Version: 1.6.1, Development Version: 1.7.6

current
Discussion topic

Back to topic list

CVS update [jwbernin-postgres-branch]: /current/docs/

Reply

Author jwbernin
Full name John Berninger
Date 2003-02-01 11:50:02 PST
Message Tag: jwbernin-postgres-branch
User: jwbernin
Date: 03/02/01 11:50:02

Modified
 /current/docs/
  configuration.sgml

Log
 Issue number: 1
 Obtained from: email
 Submitted by: jwbernin
 Reviewed by: jwbernin
 Added documentation for SSL concerns -
 Current SSL configuration affects all of Apache, added instructions for using
 existing SSL configuration with Current.

File Changes:

Directory: /current/docs/
=========================

File [changed]: configuration.sgml
Url: http://current.tigri​s.org/source/browse/​current/docs/configu​ration.sgml.diff?r1=​1.1.6.1&r2=1.1.6​.2
Delta lines: +20 -5
--------------------
--- configuration.sgml 30 Jan 2003 19:57:20 -0000 1.1.6.1
+++ configuration.sgml 1 Feb 2003 19:50:02 -0000 1.1.6.2
@@ -146,7 +146,7 @@
 <para>
 You should take note of where Apache expects to find the SSL server certificate
 and key files; in Red Hat Linux 7.3, those locations are
-<filename>/et​c/httpd.conf/ssl.crt​/server.crt</file​name> for the server
+<filename>/et​c/httpd/conf/ssl.crt​/server.crt</file​name> for the server
 certificate and <filename>/etc​/httpd/conf/ssl.key/​server.key</filen​ame>
 for the server key. You will need to know these directories when you go to
 generate the server certificate and key using <command>cadmi​n</command>.
@@ -187,16 +187,31 @@
 <filename>curr​ent.key</filename​>, and <filename>curr​ent.crt</filename​>.
 </para>
 <para>
-The <filename>CURR​ENT-CA-CERT</file​name> must be copied to clients prior to
-using Current; this will be discussed in the client section of this guide.
-</para>
-<para>
 The <filename>curr​ent.key</filename​> and <filename>curr​ent.crt</filename​>
 must be copied to the <filename>/etc​/httpd/conf/ssl.key​</filename> and
 <filename>/etc​/httpd/conf/ssl.crt​</filename> directories, respectively. They
 must also either be renamed, or the entries concerning these files must be
 changes to the proper names in the <filename>http​d.conf</filename​> file,
 Apache's main configuration file.
+</para>
+<para>
+IMPORTANT: This procedure will affect the SSL setup for your entire Apache
+server, not just for Current.
+</para>
+<para>
+If you already have an existing SSL configuration working with your Apache
+server, you can use that configuration to generate a CA-CERT file for use with
+Current. Simply copy the <filename>serv​er.crt</filename​> file from the
+<filename>/et​c/httpd/conf/ssl.crt​</filename> directory to your current
+working directory and issue the following two commands:
+<screen>
+# openssl c509 -noout -text -in server.crt > CURRENT-CA-CERT
+# cat server.crt >> CURRENT-CA-CERT
+</screen>
+</para>
+<para>
+The <filename>CURR​ENT-CA-CERT</file​name> must be copied to clients prior to
+using Current; this will be discussed in the client section of this guide.
 </para>
 <para>
 Also critical to operating a Current server is to issue a <command>cinstall




--------------------​--------------------​--------------------​---------
To unsubscribe, e-mail: cvs-unsubscribe@curr​ent.tigris.org
For additional commands, e-mail: cvs-help at current dot tigris dot org

« Previous message in topic | 1 of 1 | Next message in topic »

Messages

Show all messages in topic

CVS update [jwbernin-postgres-branch]: /current/docs/ jwbernin John Berninger 2003-02-01 11:50:02 PST
Messages per page: