Commit 8287aa93 authored by Leigh Stoller's avatar Leigh Stoller

Another apache 2.4 change; CRLs are disabled by default even if you

specify a CRL file. Hmm ...
parent aaefc41d
......@@ -842,6 +842,7 @@ CustomLog @prefix@/log/apache_ssl_request_log.geni \
SSLCACertificateFile @prefix@/etc/genica.bundle
# Another bundle of CRLs.
SSLCARevocationFile @prefix@/etc/genicrl.bundle
SSLCARevocationCheck chain
# Reject the unencrypted certs that all users get.
<Location />
......@@ -1039,6 +1040,7 @@ CustomLog @prefix@/log/apache_ssl_request_log.geni \
SSLCACertificateFile @prefix@/etc/genica.bundle
# Another bundle of CRLs.
SSLCARevocationFile @prefix@/etc/genicrl.bundle
SSLCARevocationCheck chain
ScriptAlias /protogeni/pubxmlrpc @prefix@/protogeni/pubxmlrpc/pubgeni-wrapper.pl
......@@ -1208,6 +1210,7 @@ CustomLog @prefix@/log/apache_ssl_request_log.geni \
SSLCACertificateFile @prefix@/etc/genica.bundle
# Another bundle of CRLs.
SSLCARevocationFile @prefix@/etc/genicrl.bundle
SSLCARevocationCheck chain
WSGIDaemonProcess localstore processes=5 threads=1 python-eggs=/usr/local/ops-monitoring/local/eggs
WSGIScriptAlias / /usr/local/ops-monitoring/local/wsgi/localstore.wsgi
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment