[Yum-devel] [PATCH][2/2] Support for clientside SSL cert.
Tim Lauridsen
tla at rasmil.dk
Thu May 3 07:32:43 UTC 2007
I got the following patches from Eric J. Barkie.
Purpose:
The main purpose of the client-side certificate patch is for restricting
access to repositories when dealing with licensed RPMS/distributions,
ie: RHEL. The typical use would be to generate a CA and then with that
CA issue a certificate to each machine that will be running yum. The
main repository would be hosted with Apache under mod_ssl with the
SSLCACertificateFile set to your CA and SSLVerifyClient set to
"require". By doing this Apache takes care of the authentication and we
can ensure that the yum repository can only be accessed by the intended
clients.
Take a look and let me know what you think.
Tim
-------------- next part --------------
A non-text attachment was scrubbed...
Name: yum-3.1.6-client_cert.patch
Type: text/x-patch
Size: 3816 bytes
Desc: not available
Url : http://lists.baseurl.org/pipermail/yum-devel/attachments/20070503/5b1b2ea5/attachment.bin
More information about the Yum-devel
mailing list