GithubFollow/One-KVM
1
0
Fork 0
mirror of https://github.com/mofeng-git/One-KVM.git synced 2025-12-12 01:00:29 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

fixed cert perms

Browse Source
This commit is contained in:
Devaev Maxim 2021-02-15 04:56:06 +03:00
parent 058d82c812
commit 9911914e70
2 changed files with 7 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
kvmd.install
View File

@ -24,10 +24,12 @@ post_upgrade() {
kvmd-gencert --do-the-thing --vnc
fi
chown root:root /etc/kvmd/vnc/ssl
chown root:root /etc/kvmd/nginx/ssl
chmod 755 /etc/kvmd/vnc/ssl
chmod 755 /etc/kvmd/nginx/ssl
for target in nginx vnc; do
chown root:root /etc/kvmd/$target/ssl
chown root:kvmd-$target /etc/kvmd/$target/ssl/*
chmod 440 /etc/kvmd/$target/ssl/server.key
chmod 444 /etc/kvmd/$target/ssl/server.crt
done
echo "==> Patching configs ..."
[ ! -f /boot/config.txt ] || sed -i -e 's/^dtoverlay=pi3-disable-bt$/dtoverlay=disable-bt/g' /boot/config.txt

2
scripts/kvmd-gencert
View File

@ -58,6 +58,6 @@ openssl req -new -x509 -sha256 -nodes -key server.key -out server.crt -days 3650
-subj "/C=RU/ST=Moscow/L=Moscow/O=Pi-KVM/OU=Pi-KVM/CN=localhost"
chown root:kvmd-$target /etc/kvmd/$target/ssl/*
chmod 400 server.key
chmod 440 server.key
chmod 444 server.crt
chmod 755 /etc/kvmd/$target/ssl