httpd.git - Unnamed repository; edit this file 'description' to name the repository.

	Commit message (Collapse)	Author	Age	Files	Lines
*	better error handling in httpd-ssl-gencerts (#1494556)	Joe Orton	2017-09-22	1	-0/+7
\| \| \| \|	Resolves: rhbz#1494556
*	Handle edge-cases in gencerts	Stephen Gallagher	2017-09-22	1	-1/+14
\| \| \| \| \| \|	Make sure that we exit with success if the files already exist and that we exit with failure and a message if only one or the other is present.
*	Require sscg 2.2.0 for creating service and CA certificates together	Stephen Gallagher	2017-09-21	1	-5/+2
\| \| \| \|	Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
*	use sscg defaults; append CA cert to generated cert	Joe Orton	2017-09-21	1	-10/+8
\| \| \| \|	document httpd-init.service in httpd-init.service(8)
*	Generate SSL keys on service start	Stephen Gallagher	2017-09-20	1	-0/+24
	This defers the creation of self-signed SSL certificates to the first time that httpd starts up. This has several advantages: * Waiting until the first boot will help avoid some issues with limited entropy in the install process. * The certificates can be regenerated automatically whenever they are removed, which helps with tools such as virt-sysprep * The certificates are now generated by SSCG, which produces a limited-trust CA alongside it that can be safely imported by a client. For more information on SSCG, see: https://sgallagh.wordpress.com/2016/05/02/self-signed-ssltls-certificates-why-they-are-terrible-and-a-better-alternative/ Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>