Date: Sat, 12 Jan 2002 19:25:31 -0600 (CST) From: Ryan Thompson <ryan@sasknow.com> To: freebsd-ports@freebsd.org Subject: apache13-modssl nuked my private key Message-ID: <20020112182030.N45820-100000@catalyst.sasknow.net>
next in thread | raw e-mail | index | archive | help
Hi all, When I (with ports updated yesterday) re-built apache13-modssl and made the install target, it overwrote /usr/local/etc/apache/ssl.key/server.key, without saving a backup. It does similar things for server.crt, server.csr, etc. Many admins (including myself) don't change the name "server.key" for their default private key. As a result, httpd would start, but exit immediately, dumping "key value mismatch" to the error log. (Of *course* I had a backup :-) I don't have the time right now to wade through apache's monster plist to determine what else could potentially get nuked by install... but I am of the opinion that these files, like the apache .conf files, should *not* get overwritten, or should be saved as -samples. This is intended for discussion, so this isn't a PR. - Ryan -- Ryan Thompson <ryan@sasknow.com> Network Administrator, Accounts SaskNow Technologies - http://www.sasknow.com #106-380 3120 8th St E - Saskatoon, SK - S7H 0W2 Tel: 306-664-3600 Fax: 306-664-1161 Saskatoon Toll-Free: 877-727-5669 (877-SASKNOW) North America To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020112182030.N45820-100000>