this adds a -u and -o option to the keygen script to set the ownership of the generated keys or set a different to default '.' for the output of the keys.
It also uses a mktemp for the CA file location rather than a hardcoded one.
Added -u and -o options as requested, also added -g instead of assuming a group for the user exists.
Scott Cantor
March 5, 2010 at 5:53 PM
I'll take a look...but if you're not already aware, the SP won't work without a custom libcurl package or a change to their ill-advised decision to rebuild everything on top of NSS.
There's an old bug filed on it here mostly as a placeholder so I remember to get to it when RH6 is close.
My expected course of action was the approach I saw on Debian, a custom patch and package that renames the library to libcurl-ossl or some such.
Steve Traylen
March 5, 2010 at 5:38 PM
I joined the debian group a couple of weeks ago so have been following the thread.
There's a discussion regarding Debian Bug#571631 on supporting non-root use better that it would be nice to sync up on and get one patch people can live with upstream if possible. 2.4 isn't due soon, so there's plenty of time to get agreement.
this adds a -u and -o option to the keygen script to set the
ownership of the generated keys or
set a different to default '.' for the output of the keys.
It also uses a mktemp for the CA file location rather than a hardcoded one.