[Mageia-sysadm] [560] use ssl for mailling list interface, as password are involved ( a more selective approach should be used later )
root at mageia.org
root at mageia.org
Thu Dec 9 13:34:27 CET 2010
Revision: 560
Author: misc
Date: 2010-12-09 13:34:27 +0100 (Thu, 09 Dec 2010)
Log Message:
-----------
use ssl for mailling list interface, as password are involved ( a more selective approach should be used later )
Modified Paths:
--------------
puppet/modules/sympa/manifests/init.pp
puppet/modules/sympa/templates/vhost_ml.conf
Modified: puppet/modules/sympa/manifests/init.pp
===================================================================
--- puppet/modules/sympa/manifests/init.pp 2010-12-09 12:34:25 UTC (rev 559)
+++ puppet/modules/sympa/manifests/init.pp 2010-12-09 12:34:27 UTC (rev 560)
@@ -46,13 +46,20 @@
include apache::mod_fcgid
apache::webapp_other{"sympa":
- webapp_file => "sympa/webapp_sympa.conf",
+ webapp_file => "sympa/webapp_sympa.conf",
}
-
+
+ apache::vhost_redirect_ssl { "ml.$domain": }
+
apache::vhost_other_app { "ml.$domain":
vhost_file => "sympa/vhost_ml.conf",
}
+
+ openssl::self_signed_cert{ "ml.$domain":
+ directory => "/etc/ssl/apache/"
+ }
+
@@postgresql::database { 'sympa':
description => "Sympa database",
user => "sympa",
Modified: puppet/modules/sympa/templates/vhost_ml.conf
===================================================================
--- puppet/modules/sympa/templates/vhost_ml.conf 2010-12-09 12:34:25 UTC (rev 559)
+++ puppet/modules/sympa/templates/vhost_ml.conf 2010-12-09 12:34:27 UTC (rev 560)
@@ -1,5 +1,8 @@
-<VirtualHost *:80>
+<VirtualHost *:443>
ServerName ml.<%= domain %>
+ SSLEngine on
+ SSLCertificateFile /etc/ssl/apache/ml.<%= domain %>.pem
+ SSLCertificateKeyFile /etc/ssl/apache/ml.<%= domain %>.pem
<%-
path_cgi_directory = lib_dir + "/sympa/cgi"
-%>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/mageia-sysadm/attachments/20101209/fd21eede/attachment-0001.html>
More information about the Mageia-sysadm
mailing list