Hi all,
following http://reductivelabs.com/trac/puppet/wiki/UsingMongrel it
says that hostkey/cert must be owned by puppet:puppet.
I tried to keep original path (and also owner) of both files and seems
to puppet still works...
what problems could it cause to my conf?
# grep lib mongrel.conf
SSLCertificateFile /var/lib/puppet/ssl/certs/gridinstall.pic.es.pem
SSLCertificateKeyFile /var/lib/puppet/ssl/private_keys/gridinstall.pic.es.pem
SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem
SSLCACertificateFile /var/lib/puppet/ssl/ca/ca_crt.pem
SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem
TIA,
Arnau
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to
puppet-users+unsubscribe@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en
-~----------~----~----~----~------~----~------~--~---
note that SSLCARevocationFile doesnt work, you would not be able to use your puppetd aginst your puppetmaster (if its the same machine). On Tue, Feb 10, 2009 at 12:22 AM, Arnau Bria <arnaubria@pic.es> wrote:> > Hi all, > > following http://reductivelabs.com/trac/puppet/wiki/UsingMongrel it > says that hostkey/cert must be owned by puppet:puppet. > > I tried to keep original path (and also owner) of both files and seems > to puppet still works... > > what problems could it cause to my conf? > > # grep lib mongrel.conf > SSLCertificateFile > /var/lib/puppet/ssl/certs/gridinstall.pic.es.pem > SSLCertificateKeyFile > /var/lib/puppet/ssl/private_keys/gridinstall.pic.es.pem > SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem > SSLCACertificateFile /var/lib/puppet/ssl/ca/ca_crt.pem > SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem > > > TIA, > Arnau > > > >--~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
Reasonably Related Threads
- something wrong with mongrel?
- Puppet / Passenger SSL Problems with DRBD
- Debugging Puppetmaster with Apache/Rack/Passenger
- Could not request certificate: Error 405 on SERVER
- centos 6.2 - puppet 2.7.13 - SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: tlsv1 alert protocol version