nils
/
ispmail-buster-ansible
mirror of http://git.workaround.org/ispmail/ispmail-buster-ansible.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
Browse Source

Restrict access permissions of the private key

merge-requests/1/merge
Christoph Haas 10 years ago
parent
9d40567084
commit
4cc8fe0a22
1 changed files with 2 additions and 0 deletions
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +2
    -0
      roles/ispmail-certificate/tasks/main.yml

+ 2
- 0
roles/ispmail-certificate/tasks/main.yml View File

@@ -1,4 +1,6 @@
---
- name: Create a self-signed certificate
shell: openssl req -new -x509 -days 3650 -subj "/C=DE/ST=Hamburg/L=Hamburg/O=IT/CN={{ansible_fqdn}}" -nodes -sha256 -newkey rsa:4096 -out /etc/ssl/certs/mailserver.pem -keyout /etc/ssl/private/mailserver.pem -extensions v3_ca creates=/etc/ssl/certs/mailserver.pem
- name: Restrict access permissions of the private key
file: path=/etc/ssl/private/mailserver.pem mode=0640


Write Preview
Loading…
Cancel
Save