[exim-cvs] cvs commit: exim/exim-course/rpm exim-course.spec

Top Page
Delete this message
Reply to this message
Author: Tony Finch
Date:  
To: exim-cvs
Subject: [exim-cvs] cvs commit: exim/exim-course/rpm exim-course.spec
fanf2 2006/07/17 17:31:52 BST

  Modified files:
    exim-course/rpm      exim-course.spec 
  Log:
  Create the TLS certificate and key in batch mode at installation time,
  so that it has the machine's FQDN in the CN field.
  Fix a nit with the creation of the dummy sendmail.


  Revision  Changes    Path
  1.8       +9 -1      exim/exim-course/rpm/exim-course.spec


  Index: exim-course.spec
  ===================================================================
  RCS file: /home/cvs/exim/exim-course/rpm/exim-course.spec,v
  retrieving revision 1.7
  retrieving revision 1.8
  diff -u -u -r1.7 -r1.8
  --- exim-course.spec    17 Jul 2006 15:49:48 -0000    1.7
  +++ exim-course.spec    17 Jul 2006 16:31:52 -0000    1.8
  @@ -1,4 +1,4 @@
  -# $Cambridge: exim/exim-course/rpm/exim-course.spec,v 1.7 2006/07/17 15:49:48 fanf2 Exp $
  +# $Cambridge: exim/exim-course/rpm/exim-course.spec,v 1.8 2006/07/17 16:31:52 fanf2 Exp $
   #
   # The RPM spec file for the package which customizes PWF Linux for the
   # Exim course. This is a little bit sketchy and assumes a working
  @@ -55,7 +55,7 @@
   mkdir -p ${RPM_BUILD_ROOT}/usr/sbin
   mkdir -p ${RPM_BUILD_ROOT}/usr/local/bin
   # install stuff
  -cat <<EOF >> ${RPM_BUILD_ROOT}/usr/sbin/sendmail
  +cat <<EOF >${RPM_BUILD_ROOT}/usr/sbin/sendmail
   #!/bin/sh
   echo sendmail is not installed
   exit 1
  @@ -106,6 +106,13 @@
   # create eicar.com
   echo > /home/course/eicar.com \
     'X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*'
  +# create TLS certificates. We do it here so that each machine's is different
  +cd /usr/local/etc/mycert
  +openssl genrsa -des3 -passout pass:abc123 -out server.key 1024
  +openssl rsa -passin pass:abc123 -in server.key -out server.pem
  +openssl req -new -passin pass:abc123 -key server.key -out server.csr -batch -subj \
  +  "/C=GB/ST=England/L=Cambridge/O=University of Cambridge/OU=Computing Service/CN=$(hostname --fqdn)"
  +openssl x509 -req -days 14 -in server.csr -passin pass:abc123 -signkey server.key -out server.crt
   # remove root from the aliases file that pwfcfg2 uses to reset the
   # machine's configuration at boot time
   . /etc/pwf-linux/pwfcfg2
  @@ -137,6 +144,7 @@
   chkconfig clamd off
   # more cleaning
   rm -rf /var/spool/exim
  +rm -rf /usr/local/etc/mycert


%changelog
* Mon Jul 17 2006 - fanf@???