openvpn: Deleted the task fixing the CRL rights since it has been fixed in upstream
All checks were successful
gitea/ansible-roles/pipeline/head This commit looks good
All checks were successful
gitea/ansible-roles/pipeline/head This commit looks good
This commit is contained in:
parent
0722b84341
commit
9918776286
|
@ -58,6 +58,8 @@ The **patch** part changes is incremented if multiple releases happen the same m
|
||||||
|
|
||||||
### Removed
|
### Removed
|
||||||
|
|
||||||
|
* openvpn: Deleted the task fixing the CRL rights since it has been fixed in upstream
|
||||||
|
|
||||||
### Security
|
### Security
|
||||||
|
|
||||||
## [22.09] 2022-09-19
|
## [22.09] 2022-09-19
|
||||||
|
|
|
@ -77,16 +77,6 @@
|
||||||
- include_role:
|
- include_role:
|
||||||
name: evolix/remount-usr
|
name: evolix/remount-usr
|
||||||
|
|
||||||
- name: Fix CRL rights in shellpki command
|
|
||||||
lineinfile:
|
|
||||||
dest: "/usr/local/sbin/shellpki"
|
|
||||||
regexp: '{{ item.regexp }}'
|
|
||||||
insertafter: "{{ item.insertafter }}"
|
|
||||||
line: "{{ item.line }}"
|
|
||||||
with_items:
|
|
||||||
- { regexp: '^ chmod 604 /etc/shellpki/crl.pem$', line: " chmod 604 /etc/shellpki/crl.pem", insertafter: '^ chmod 640 "\${CACERT}"$' }
|
|
||||||
- { regexp: '^ chmod 751 /etc/shellpki/$', line: " chmod 751 /etc/shellpki/", insertafter: '^ chmod 604 /etc/shellpki/crl.pem$' }
|
|
||||||
|
|
||||||
- name: Deploy OpenVPN server config
|
- name: Deploy OpenVPN server config
|
||||||
template:
|
template:
|
||||||
src: "server.conf.j2"
|
src: "server.conf.j2"
|
||||||
|
|
|
@ -60,16 +60,6 @@
|
||||||
path: /etc/shellpki/dh2048.pem
|
path: /etc/shellpki/dh2048.pem
|
||||||
size: 2048
|
size: 2048
|
||||||
|
|
||||||
- name: Fix CRL rights in shellpki command
|
|
||||||
lineinfile:
|
|
||||||
dest: "/usr/local/sbin/shellpki"
|
|
||||||
regexp: '{{ item.regexp }}'
|
|
||||||
insertafter: "{{ item.insertafter }}"
|
|
||||||
line: "{{ item.line }}"
|
|
||||||
with_items:
|
|
||||||
- { regexp: '^ chmod 604 /etc/shellpki/crl.pem$', line: " chmod 604 /etc/shellpki/crl.pem", insertafter: '^ chmod 640 "\${CACERT}"$' }
|
|
||||||
- { regexp: '^ chmod 751 /etc/shellpki/$', line: " chmod 751 /etc/shellpki/", insertafter: '^ chmod 604 /etc/shellpki/crl.pem$' }
|
|
||||||
|
|
||||||
- name: Deploy OpenVPN server config
|
- name: Deploy OpenVPN server config
|
||||||
template:
|
template:
|
||||||
src: "server.conf.j2"
|
src: "server.conf.j2"
|
||||||
|
|
Loading…
Reference in a new issue