BIND 10 #1044: SSL/TLS certificate for b10-cmdctl is expired
BIND 10 Development
do-not-reply at isc.org
Thu Nov 15 15:41:50 UTC 2012
#1044: SSL/TLS certificate for b10-cmdctl is expired
-------------------------------------+-------------------------------------
Reporter: cas | Owner: UnAssigned
Type: | Status: reviewing
defect | Milestone:
Priority: | Sprint-20121120
medium | Resolution:
Component: cmd- | Sensitive: 0
ctl | Sub-Project: Core
Keywords: | Estimated Difficulty: 3.0
Defect Severity: High | Total Hours: 0
Feature Depending on Ticket: |
alpha2 |
Add Hours to Ticket: 0 |
Internal?: 0 |
-------------------------------------+-------------------------------------
Changes (by jelte):
* owner: jelte => UnAssigned
* status: assigned => reviewing
Comment:
and done!
src/bin/cmdctl/ is now the proud owner of a new small tool b10-certgen to
create and update the self-signed certificate. Please see the manpage for
an explanation.
(in short; by default it will check the cmdctl-certfile.pem in the current
working directory, and print whether it is valid. with -w one can update
it)
I removed the certificate and key we provided, and it is now generated
when 'make' is done. The tool is installed so the administrator can update
the installed one at his or her leisure.
Possible future enhancements: allow user to set properties like
organization and common name, and/or print the content the certificate
(currently the properties are hardcoded and it will only tell whether the
cert is valid or not).
--
Ticket URL: <http://bind10.isc.org/ticket/1044#comment:8>
BIND 10 Development <http://bind10.isc.org>
BIND 10 Development
More information about the bind10-tickets
mailing list