~mdw / ssh-ca / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
etc/config.sh: Publish through dedicated server account.
[ssh-ca] / etc / config.sh
diff --git a/etc/config.sh b/etc/config.sh
index 7bf8e07..ef77db9 100644 (file)
--- a/etc/config.sh
+++ b/etc/config.sh
@@ -9,8 +9,8 @@
 keytypes="rsa:3072 dsa:1024"
 domain="distorted.org.uk"
 cacomment="ssh-ca@$domain"
-validity="-1d:+2d1h"
-publish_target="vampire.distorted.org.uk:/var/www/ssh-ca/"
+validity="-1h:+2d1h"
+publish_target="sys-upload@stratocaster.distorted.org.uk:/var/www/ssh-ca/"
 
 ## GnuPG defaults.
 gnupg_key_type=RSA gnupg_key_length=3072
@@ -21,13 +21,14 @@ gnupg_key_email_domain="$domain"
 ### Scope for the CA.
 
 ## Domain name.
-scope="*.$domain"
+scope="*.$domain,*.binswood.org.uk"
 
 ## IPv4 addresses.
 for i in 144 145 146 147 148 149; do scope=$scope,"62.49.204.$i"; done
 scope=$scope,"62.49.204.15?"
 for i in 198 199; do scope=$scope,"172.29.$i.*"; done
 scope=$scope,"212.13.198.69,212.13.198.7?"
+scope=$scope,"10.165.27.*"
 
 ## IPv6 addresses.
 scope=$scope,"2001:470:1f08:1b98::2,2001:470:1f09:1b98:*"
A simple SSH certificate authority.