[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#168109: apache2-common: mods-available/ssl.conf should enable ssl, and specify/generate a default cert/key

Hi,

The resolution to #231726 is disabling ssl-cert in postinst,

   # Make self-signed certificate
   #if [ ! -f /etc/apache2/ssl/apache.pem ]
   #then
   #        /usr/sbin/make-ssl-cert /usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache.pem
   #fi

As a consequence, this #168109 bug is then reopened.

I would like to suggest the solution by reinsert postinst code like this,

   # Make self-signed certificate
   if [ ! -f /etc/apache2/ssl/apache.pem ]
   then
           /usr/sbin/make-ssl-cert /usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache.pem || (rm -f /etc/apache2/ssl/apache.pem; false)
   fi

But it should be better to split mod_ssl and the action of generating
cert/key in a package named "libapache2-mod-ssl".

PS. How can I retitle the bug with long subject?
retitle 168109 apache2-common: mods-available/ssl.conf should enable ssl, and specify/generate a default cert/key
^^^ The line is too long and gmail does wrap it.
Reply to: