etc/config.tcl: Hack for testing.

  * Configure `ca-name' to dissuade anyone from configuring the CA as
    actually trusted.

  * Don't really push anywhere, just say what would have been done.

diff --git a/etc/config.tcl b/etc/config.tcl
index 3b901fc996fbf9122a3529d6006ebfc6a38c68af..f5582af8cad2b1f552ed71930fd16de3922d01b6 100644 (file)
--- a/etc/config.tcl
+++ b/etc/config.tcl
@@ -12,6 +12,15 @@ set C(ca-name) {
   emailAddress "ca@distorted.org.uk"
 }
 
+set C(ca-name) {
+  countryName "GB"
+  stateOrProvinceName "Cambridgeshire"
+  localityName "Cambridge"
+  organizationName "distorted.org.uk"
+  commonName "Test Certificate Authority -- do not trust"
+  emailAddress "mdw@distorted.org.uk"
+}
+
 set P(tls-client) {
   extensions tls-client-extensions
   issue-time "*-*-* 00:00:00"
@@ -34,10 +43,10 @@ set P(tls-server-longterm) {
 }
 
 proc update-hook {} {
-  global env
-  if {![info exists env(CA_BODGE)]} {
-    exec 2>@stderr rsync -rtl --delete-delay \
-       ca.cert crl cert req archive \
-       sysupl-ca@stratocaster.distorted.org.uk:files/
+  puts -nonewline "Send to:"
+  foreach host {ustrat uartist} {
+    exec rsync -avD ca.cert crl cert req $host:etc/ca/
+    puts -nonewline " $host"
   }
+  puts "."
 }