Patrick_Pluto/linux-deployment-scripts
1
0
Fork 0
Code Pull requests Activity

trusted ca on server

Browse source
This commit is contained in:
Patrick 2024-11-13 20:56:49 +01:00
parent 3f56ae6a63
commit 19c974e083
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
configs/scripts/server.sh
View file

@ -30,9 +30,11 @@ mkdir -p /mnt/etc/ssl/certs/
mkdir -p /mnt/etc/ssl/private/
chroot /mnt /bin/bash -c "openssl req -x509 -new -nodes -key /root/ca.key -sha256 -days 1024 -out /etc/ssl/certs/ca.crt -subj '/C=CH/ST=Zurich/L=Zurich/O=InterstellarNet/OU=NONE/CN=INTERSTELLAR'"
cp /mnt/etc/ssl/certs/ca.crt /mnt/root
cp /mnt/etc/ssl/certs/ca.crt /mnt/usr/local/share/ca-certificates/
chroot /mnt /bin/bash -c "chown -R www-data:www-data /etc/ssl/private/"
chroot /mnt /bin/bash -c "chown -R www-data:www-data /etc/ssl/certs/"
chmod 600 -R /mnt/etc/ssl/private/
chmod 644 -R /mnt/etc/ssl/certs/ca.crt
chroot /mnt /bin/bash -c "update-ca-certificates"
read a