• Recent
    • Unsolved
    • Tags
    • Popular
    • Users
    • Groups
    • Search
    • Register
    • Login

    Export/import ssl directory

    Scheduled Pinned Locked Moved Solved
    Feature Request
    2
    2
    712
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Wayne WorkmanW
      Wayne Workman
      last edited by Wayne Workman

      I think the ability to export/import the ssl directory through the web gui would be beneficial. This would help people who use fog 1.3+ and also use the fog client. It’d help them when they want to build a new server. Right now, I have written instructions for this here and here but it’s all manual work.

      I think that ‘Configuration Save’ is appropriately named if it really does save all configuration including the ssl directory. Right now, ‘Configuration Save’ only imports/exports the database. If that stays the same, a more appropriate name would be ‘Database Save’, and perhaps we add another item called ‘SSL Save’ ? Lots of ways to do this. I’d like to see ‘Configuration Save’ remain the same so that all the threads/posts about it are still accurate, and just have the SSL exporting/importing added to it.

      Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
      Daily Clean Installation Results:
      https://fogtesting.fogproject.us/
      FOG Reporting:
      https://fog-external-reporting-results.fogproject.us/

      1 Reply Last reply Reply Quote 2
      • J
        Joe Schmitt Senior Developer
        last edited by Joe Schmitt

        @Wayne-Workman unfortunately we will not add this. The ssl directory where your private keys are stored, and should never be accessible via the web GUI. That presents a massive security risk as a single bug in the web GUI could provide anyone with access to your private certs; arguably the most sensitive data on the server.

        As the saying goes, security and convience are usually at opposite ends of the spectrum; and this is one thing we will not compromise on.

        Exporting your keys as root using ssh is the preferred, and only way, we will support.

        Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG! Get in contact with me (chat bubble in the top right corner) if you want to join in.

        1 Reply Last reply Reply Quote 2
        • 1 / 1
        • First post
          Last post

        197

        Online

        12.1k

        Users

        17.3k

        Topics

        155.3k

        Posts
        Copyright © 2012-2024 FOG Project