www.bonsaiframework.com
Page tree

Versions Compared

Old Version 190

changes.mady.by.user Roderick Fong Yee

Saved on

compared with

New Version 191

changes.mady.by.user Tin Pham

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Refining comment on location of ssl certificates.

...

Panel

/etc/ssl/private/ # Only view-able by root the standard location for the private keys
/etc/ssl/certs/ # Standard location for CA keys with symbolic links pointing to /usr/share/ca-certificates/

However, we see some issues with this. First putting For now we will use this structure.

Warning

This needs some consideration of structure and permissions.

However, are the issues with using the default Ubuntu locations.

  • Putting chain certificates in the same directory as CA certificates does not make sense if SSLCACertificatePath is used.

...

  • Developing a portable BonsaiFramework version of Apache Web Server and keeping certificates with the service makes more sense

...

So the BonsaiFramework will use the following directories,

Warning

This needs some consideration of structure and permissions.

...

  • .
  • One other alternative is to use Debian's apparent standard, /etc/apache/ssl

...

  • but I

...

  • noticed there is no consideration for protecting the private key.

...

Store Public Key

Store the public key in the public folder,

...