Re: [apache-ssl] certificate question

To: apache-ssl@lists.aldigital.co.uk
Subject: Re: [apache-ssl] certificate question
From: Adam Laurie <adam@algroup.co.uk>
Date: Wed, 08 Dec 1999 17:00:05 +0000
Cc: Amy J Brenen <amy+@pitt.edu>
Delivered-to: mailing list apache-ssl@lists.aldigital.co.uk
List-help: apache-ssl-help@lists.aldigital.co.uk
List-of-last-resort: apache-ssl-owner@lists.aldigital.co.uk
List-unsubscribe: apache-ssl-unsubscribe@lists.aldigital.co.uk
Mailing-list: contact apache-ssl-help@lists.aldigital.co.uk; run by ezmlm
Organization: http://www.apache-ssl.org
References: <Pine.GSO.3.96L.991208111040.18512A-100000@unixs4.cis.pitt.edu>
Reply-to: apache-ssl@lists.aldigital.co.uk

"Amy J. Brenen" wrote:
> 
> Can someone please tell what the correct protections should be set to for
> the certificate file and the key file.  Our servers is running under user
> "nobody" and group "nobody".  The certificate and key files are owned by
> root.

I would recommend that they continue to be owned by root, and you do:

  chmod og-rwx *key
  chmod og-w *cert

cheers,
Adam
--
Adam Laurie                   Tel: +44 (181) 742 0755
A.L. Digital Ltd.             Fax: +44 (181) 742 5995
Voysey House                  
Barley Mow Passage            http://www.aldigital.co.uk
London W4 4GB                 mailto:adam@algroup.co.uk
UNITED KINGDOM                PGP key on keyservers

References:
- certificate question
  - From: "Amy J. Brenen" <amy+@pitt.edu>

Prev by Date: RE: [apache-ssl] certificate question
Next by Date: [apache-ssl] cgi-bin questions
Previous by thread: Re: [apache-ssl] certificate question
Next by thread: Certificate access in CGI-Script
Index(es):
- Date
- Thread