SSL certificate management/storage

Joe Orton jorton at
Fri Feb 4 16:25:12 UTC 2005

There was a brief thread on this at the end of last year; obviously
"certificate management" is a problem of vast scope but it would be good
to sort out at least some simple filesystem conventions for FC4.  Some
simple problems I'd like to solve:

1. certificate storage is split between /etc/httpd/conf/ssl.*
for mod_ssl-specific stuff, and and /usr/share/ssl for system-wide
2. ... and /usr/share/ssl is Very Wrong for "config data" like certs
3. increasing number of daemon packages are creating self-signed
certs in %post scripts; could/should this be unified?

Any comments?


More information about the fedora-devel-list mailing list