Bug#168109: apache2-common: mods-available/ssl.conf should enable ssl, and specify/generate a default cert/key
Hi,
The resolution to #231726 is disabling ssl-cert in postinst,
# Make self-signed certificate
#if [ ! -f /etc/apache2/ssl/apache.pem ]
#then
# /usr/sbin/make-ssl-cert
/usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache.pem
#fi
As a consequence, this #168109 bug is then reopened.
I would like to suggest the solution by reinsert postinst code like this,
# Make self-signed certificate
if [ ! -f /etc/apache2/ssl/apache.pem ]
then
/usr/sbin/make-ssl-cert /usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache.pem || (rm -f /etc/apache2/ssl/apache.pem;
false)
fi
But it should be better to split mod_ssl and the action of generating
cert/key in a package named "libapache2-mod-ssl".
PS. How can I retitle the bug with long subject?
retitle 168109 apache2-common: mods-available/ssl.conf should enable ssl, and specify/generate a default cert/key
^^^ The line is too long and gmail does wrap it.
Reply to: