summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Mark Wooding [Tue, 29 Jan 2013 18:39:36 +0000 (18:39 +0000)]
bin/sign: Read fingerprint from master rather than publish directory.
It's the authoritative source.
Mark Wooding [Tue, 29 Jan 2013 18:38:21 +0000 (18:38 +0000)]
etc/hosts: Add terror.
Mark Wooding [Mon, 14 Jan 2013 02:02:59 +0000 (02:02 +0000)]
etc/config.sh: Moving archive to stratocaster.
Mark Wooding [Sun, 13 Jan 2013 19:59:58 +0000 (19:59 +0000)]
etc/hosts: Add orange.
Mark Wooding [Sat, 5 Jan 2013 08:34:51 +0000 (08:34 +0000)]
etc/hosts: Publish `jazz.iodine' identity.
Mark Wooding [Sat, 29 Dec 2012 04:20:40 +0000 (04:20 +0000)]
etc/hosts: Now stratocaster is the Git server.
Mark Wooding [Mon, 30 Apr 2012 08:59:14 +0000 (09:59 +0100)]
Include subnet-qualified names names for hosts.
Mark Wooding [Sun, 22 Apr 2012 10:23:16 +0000 (11:23 +0100)]
etc/hosts: Add nicknames for strat and tele.
Mark Wooding [Sun, 22 Apr 2012 10:22:58 +0000 (11:22 +0100)]
etc/hosts: Reformat entry for crybaby.
Mark Wooding [Sat, 21 Apr 2012 22:58:45 +0000 (23:58 +0100)]
Return of the virtual hosts.
Mark Wooding [Mon, 19 Mar 2012 02:47:09 +0000 (02:47 +0000)]
etc/config.sh: Ooops. Fix the skew to one hour, not one day.
Mark Wooding [Mon, 12 Mar 2012 17:24:29 +0000 (17:24 +0000)]
bin/sign: Stupid typo fix: include leading `@' in CA entry file.
Mark Wooding [Mon, 12 Mar 2012 17:19:00 +0000 (17:19 +0000)]
etc/hosts: Actually commit this.
Mark Wooding [Mon, 12 Mar 2012 17:18:02 +0000 (17:18 +0000)]
config.sh: Increase scope for new address ranges.
Mark Wooding [Mon, 12 Mar 2012 16:54:41 +0000 (16:54 +0000)]
etc/config.sh: Allow a little slack in the validity timing.
Mark Wooding [Sun, 26 Feb 2012 22:18:59 +0000 (22:18 +0000)]
bin/sign: Remove spurious initial blank line.
Mark Wooding [Sat, 11 Feb 2012 15:39:44 +0000 (15:39 +0000)]
bin/sign: Force use of v00 certificates.
Debian stable doesn't understand v01.
Mark Wooding [Mon, 5 Sep 2011 09:17:55 +0000 (10:17 +0100)]
bin/sign: More care with replacing the old publish directory.
Don't delete the old backup or try to rename if there isn't a good newer
version. It'll fail, and clobber the only good version we have.
Mark Wooding [Sun, 4 Sep 2011 18:46:44 +0000 (19:46 +0100)]
Rearrange the filesystem structure.
Remove the archive. Remove the pointless extra directory level. We're
going to use rsync instead of http.
Mark Wooding [Sat, 13 Aug 2011 22:45:48 +0000 (23:45 +0100)]
Major change of approach and rewrite.
Fetching keys from the various hosts is silly: we must actually already
have them, otherwise SSH will complain. Instead, assume that someone
has already arranged to collect the keys and put them in the host/
directory. There's now a script to sign new certificates for them and
stash them in publish/. There's another script to upload the publish/
directory to a webserver (or whatever).
Mark Wooding [Sun, 10 Jul 2011 22:17:11 +0000 (23:17 +0100)]
Minimal SSH certificate authority.