[opensuse] Why separate dirs for: /etc/apache2/ssl.crl ssl.crt ssl.csr ssl.key ssl.prm?
Listmates, Why does opensuse use separate directories under /etc/apache2 for ssl.crl ssl.crt ssl.csr ssl.key ssl.prm? Why is that any better than say putting all the certs in /etc/apache2/sslcerts? Does anybody recall why? -- David C. Rankin, J.D.,P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
David C. Rankin wrote:
Listmates,
Why does opensuse use separate directories under /etc/apache2 for ssl.crl ssl.crt ssl.csr ssl.key ssl.prm? Why is that any better than say putting all the certs in /etc/apache2/sslcerts?
Does anybody recall why?
I don't think it is/was openSUSE, I think the directory scheme belongs to mod_ssl. /Per -- Per Jessen, Zürich (22.1°C) -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Per Jessen wrote:
David C. Rankin wrote:
Listmates,
Why does opensuse use separate directories under /etc/apache2 for ssl.crl ssl.crt ssl.csr ssl.key ssl.prm? Why is that any better than say putting all the certs in /etc/apache2/sslcerts?
Does anybody recall why?
I don't think it is/was openSUSE, I think the directory scheme belongs to mod_ssl.
/Per
Nope, mod_ssl doesn't care. The dirs are just option in /etc/apache2/vhosts.d/vhost-ssl.conf SSLCertificateFile /etc/apache2/ssl.crt/server.crt SSLCertificateKeyFile /etc/apache2/ssl.key/server.key You can set them to anything. Surely somebody knows why openSuSE does it this way. I don't even recall how long it has been this way. Can one of the novell or openSuSE guys check. I'll also post to factory and see. -- David C. Rankin, J.D.,P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
David C. Rankin wrote:
Per Jessen wrote:
David C. Rankin wrote:
Listmates,
Why does opensuse use separate directories under /etc/apache2 for ssl.crl ssl.crt ssl.csr ssl.key ssl.prm? Why is that any better than say putting all the certs in /etc/apache2/sslcerts?
Does anybody recall why?
I don't think it is/was openSUSE, I think the directory scheme belongs to mod_ssl.
/Per
Nope,
mod_ssl doesn't care. The dirs are just option in /etc/apache2/vhosts.d/vhost-ssl.conf
I know. I didn't say mod_ssl _cared_, just that the directory scheme belongs to mod_ssl - perhaps more correctly: was inherited from mod_ssl. The reference manual at modssl.org have directories such as these: /usr/local/apache/conf/ssl.crt/server.crt /usr/local/apache/conf/ssl.key/server.key /usr/local/apache/conf/ssl.crl/ca-bundle-client.crl in openSUSE (well, even in SUSE Linux 8.2) they became: /etc/apache2/ssl.nnn So to answer your original question - the reason openSUSE uses separate directories under /etc/apache2 for ssl.crl ssl.crt ssl.csr ssl.key ssl.prm is that modssl did/does. Or at least that's my guess. /Per -- Per Jessen, Zürich (13.9°C) -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Per Jessen wrote:
David C. Rankin wrote:
Per Jessen wrote:
David C. Rankin wrote:
Listmates,
Why does opensuse use separate directories under /etc/apache2 for ssl.crl ssl.crt ssl.csr ssl.key ssl.prm? Why is that any better than say putting all the certs in /etc/apache2/sslcerts?
Does anybody recall why? I don't think it is/was openSUSE, I think the directory scheme belongs to mod_ssl.
/Per
Nope,
mod_ssl doesn't care. The dirs are just option in /etc/apache2/vhosts.d/vhost-ssl.conf
I know. I didn't say mod_ssl _cared_, just that the directory scheme belongs to mod_ssl - perhaps more correctly: was inherited from mod_ssl. The reference manual at modssl.org have directories such as these:
/usr/local/apache/conf/ssl.crt/server.crt /usr/local/apache/conf/ssl.key/server.key /usr/local/apache/conf/ssl.crl/ca-bundle-client.crl
in openSUSE (well, even in SUSE Linux 8.2) they became:
/etc/apache2/ssl.nnn
So to answer your original question - the reason openSUSE uses separate directories under /etc/apache2 for ssl.crl ssl.crt ssl.csr ssl.key ssl.prm is that modssl did/does. Or at least that's my guess.
/Per
OK, I buy that. So mod_ssl is responsible for that mess! I guess there is a reason, but I just created /etc/apache2/certs and dumped them in there and edited vhosts-ssl.conf. Works fine. The why questions is still a mystery... -- David C. Rankin, J.D.,P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (2)
-
David C. Rankin
-
Per Jessen