[Bug 1290] New: pregeneerated certificate handeling in Debian Edu should be improved.
http://bugs.skolelinux.no/show_bug.cgi?id=1290
Summary: pregeneerated certificate handeling in Debian Edu should
be improved.
Product: Skolelinux
Version: etch-alpha
Platform: Other
OS/Version: other
Status: NEW
Severity: enhancement
Priority: P4
Component: debian-edu-config
AssignedTo: debian-edu@lists.debian.org
ReportedBy: ronny@skolelinux.org
The default certificate created by debian's tools uses by default the hostname
(tjener.intern) and is only valid for 1 month. The resoning is ofcourse that
certificates are site spesific and should be generated by the admin.
But for the default internal network used in Debian Edu we want to provide a
more permanent certificate, that can be valid for all the aliases and services.
Hess and Werner, suggest using [1 Subject alternative names]
a fall back approch can be to use wildcard certificate *.intern and have all
services use fqdn. suggested by akai
[1]http://www.openssl.org/docs/apps/x509v3_config.html#Subject_Alternative_Name_
Ronny
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
Reply to: