Browse Source

Move isakmpd's auto-generated public key, local.pub, into /etc/isakmpd

This makes it readable by unprivileged uses, simplifying configuration,
and there is no reason for it to be secret.
ok msf deraadt hshoexer
OPENBSD_4_1
mcbride 18 years ago
parent
commit
9eb51b632f
1 changed files with 2 additions and 2 deletions
  1. +2
    -2
      src/etc/rc

+ 2
- 2
src/etc/rc View File

@ -1,4 +1,4 @@
# $OpenBSD: rc,v 1.294 2006/11/16 13:07:11 henning Exp $
# $OpenBSD: rc,v 1.295 2006/11/28 23:44:35 mcbride Exp $
# System startup script run by init on autoboot # System startup script run by init on autoboot
# or after single-user. # or after single-user.
@ -545,7 +545,7 @@ if [ ! -f /etc/isakmpd/private/local.key ]; then
if /usr/sbin/openssl genrsa -out /etc/isakmpd/private/local.key 1024 \ if /usr/sbin/openssl genrsa -out /etc/isakmpd/private/local.key 1024 \
> /dev/null 2>&1; then > /dev/null 2>&1; then
chmod 600 /etc/isakmpd/private/local.key chmod 600 /etc/isakmpd/private/local.key
openssl rsa -out /etc/isakmpd/private/local.pub \
openssl rsa -out /etc/isakmpd/local.pub \
-in /etc/isakmpd/private/local.key -pubout > /dev/null 2>&1 -in /etc/isakmpd/private/local.key -pubout > /dev/null 2>&1
echo done. echo done.
else else


Loading…
Cancel
Save