where 'o where to store certificates and keys
John Dennis
jdennis at redhat.com
Wed Apr 20 19:08:56 UTC 2005
On Wed, 2005-04-20 at 12:42 -0400, Bill Nottingham wrote:
> I'd think /etc/pki is more practical.
Done, the name is chosen and the directory /etc/pki has been added
making its appearance in filesystem-2.3.2-1.
The recommendation is for each package to create a subdirectory
under /etc/pki with its own name. This is the most general solution, its
mimics recommendations in much of FHS, packages get their own area and
can do whatever they please without impacting anybody else, and its
makes it easier to enforce security via permissions, ownership, and
SELinux policy.
--
John Dennis <jdennis at redhat.com>
More information about the Fedora-maintainers
mailing list