~mdw / distorted-letsencrypt / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
bin/setup: The `cert' directory doesn't need to be group-writable.
[distorted-letsencrypt] / bin / setup
1 #! /bin/sh
2 set -ex
3
4 user=letsencrypt
5 home=$(getent passwd $user | cut -d: -f6)
6 cd $home
7
8 while read d m u g; do
9 mkdir -p $d
10 chmod $m $d
11 chown $u:$g $d
12 done <<EOF
13 . 755 root root
14 .cache 2775 root $user
15 .config 2775 root $user
16 .local 2775 root $user
17 cert 2755 root $user
18 etc 2770 root $user
19 log 2775 root $user
20 tmp 2770 root $user
21 webroot 755 root root
22 webroot/.well-known 755 root root
23 webroot/.well-known/acme-challenge 2775 root $user
24 EOF
Wrapping around the EFF LetsEncrypt client.