[Mageia-sysadm] [560] use ssl for mailling list interface, as password are involved ( a more selective approach should be used later )

root at mageia.org root at mageia.org
Thu Dec 9 13:34:27 CET 2010


Revision: 560
Author:   misc
Date:     2010-12-09 13:34:27 +0100 (Thu, 09 Dec 2010)
Log Message:
-----------
use ssl for mailling list interface, as password are involved ( a more selective approach should be used later )

Modified Paths:
--------------
    puppet/modules/sympa/manifests/init.pp
    puppet/modules/sympa/templates/vhost_ml.conf

Modified: puppet/modules/sympa/manifests/init.pp
===================================================================
--- puppet/modules/sympa/manifests/init.pp	2010-12-09 12:34:25 UTC (rev 559)
+++ puppet/modules/sympa/manifests/init.pp	2010-12-09 12:34:27 UTC (rev 560)
@@ -46,13 +46,20 @@
     
         include apache::mod_fcgid
         apache::webapp_other{"sympa":
-    	webapp_file => "sympa/webapp_sympa.conf",
+             webapp_file => "sympa/webapp_sympa.conf",
         }
-    
+   
+        apache::vhost_redirect_ssl { "ml.$domain": }
+ 
         apache::vhost_other_app { "ml.$domain":
             vhost_file => "sympa/vhost_ml.conf",
         }
+
+        openssl::self_signed_cert{ "ml.$domain":
+            directory => "/etc/ssl/apache/"
+        }
     
+
         @@postgresql::database { 'sympa':
             description => "Sympa database",
             user => "sympa",

Modified: puppet/modules/sympa/templates/vhost_ml.conf
===================================================================
--- puppet/modules/sympa/templates/vhost_ml.conf	2010-12-09 12:34:25 UTC (rev 559)
+++ puppet/modules/sympa/templates/vhost_ml.conf	2010-12-09 12:34:27 UTC (rev 560)
@@ -1,5 +1,8 @@
-<VirtualHost *:80>
+<VirtualHost *:443>
 	ServerName ml.<%= domain %>
+    SSLEngine on
+    SSLCertificateFile /etc/ssl/apache/ml.<%= domain %>.pem
+    SSLCertificateKeyFile /etc/ssl/apache/ml.<%= domain %>.pem
 <%-
 path_cgi_directory = lib_dir + "/sympa/cgi"
 -%>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/mageia-sysadm/attachments/20101209/fd21eede/attachment-0001.html>


More information about the Mageia-sysadm mailing list