From owner-freebsd-ports  Sat Jan 12 17:24:41 2002
Delivered-To: freebsd-ports@freebsd.org
Received: from catalyst.sasknow.net (catalyst.sasknow.net [207.195.92.130])
	by hub.freebsd.org (Postfix) with ESMTP id BCBAC37B400
	for <freebsd-ports@freebsd.org>; Sat, 12 Jan 2002 17:24:37 -0800 (PST)
Received: from localhost (ryan@localhost)
	by catalyst.sasknow.net (8.11.6/8.11.6) with ESMTP id g0D1PV375491
	for <freebsd-ports@freebsd.org>; Sat, 12 Jan 2002 19:25:31 -0600 (CST)
	(envelope-from ryan@sasknow.com)
X-Authentication-Warning: catalyst.sasknow.net: ryan owned process doing -bs
Date: Sat, 12 Jan 2002 19:25:31 -0600 (CST)
From: Ryan Thompson <ryan@sasknow.com>
X-X-Sender: ryan@catalyst.sasknow.net
To: freebsd-ports@freebsd.org
Subject: apache13-modssl nuked my private key
Message-ID: <20020112182030.N45820-100000@catalyst.sasknow.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-ports.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-ports>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-ports>
X-Loop: FreeBSD.org


Hi all,

When I (with ports updated yesterday) re-built apache13-modssl and
made the install target, it overwrote
/usr/local/etc/apache/ssl.key/server.key, without saving a backup. It
does similar things for server.crt, server.csr, etc. Many admins
(including myself) don't change the name "server.key" for their
default private key.

As a result, httpd would start, but exit immediately, dumping "key
value mismatch" to the error log.

(Of *course* I had a backup :-)

I don't have the time right now to wade through apache's monster plist
to determine what else could potentially get nuked by install... but I
am of the opinion that these files, like the apache .conf files,
should *not* get overwritten, or should be saved as -samples.

This is intended for discussion, so this isn't a PR.

- Ryan

-- 
  Ryan Thompson <ryan@sasknow.com>
  Network Administrator, Accounts

  SaskNow Technologies - http://www.sasknow.com
  #106-380 3120 8th St E - Saskatoon, SK - S7H 0W2

        Tel: 306-664-3600   Fax: 306-664-1161   Saskatoon
  Toll-Free: 877-727-5669     (877-SASKNOW)     North America


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message