* Configure `ca-name' to dissuade anyone from configuring the CA as
actually trusted.
* Don't really push anywhere, just say what would have been done.
emailAddress "ca@distorted.org.uk"
}
emailAddress "ca@distorted.org.uk"
}
+set C(ca-name) {
+ countryName "GB"
+ stateOrProvinceName "Cambridgeshire"
+ localityName "Cambridge"
+ organizationName "distorted.org.uk"
+ commonName "Test Certificate Authority -- do not trust"
+ emailAddress "mdw@distorted.org.uk"
+}
+
set P(tls-client) {
extensions tls-client-extensions
issue-time "*-*-* 00:00:00"
set P(tls-client) {
extensions tls-client-extensions
issue-time "*-*-* 00:00:00"
- global env
- if {![info exists env(CA_BODGE)]} {
- exec 2>@stderr rsync -rtl --delete-delay \
- ca.cert crl cert req archive \
- sysupl-ca@stratocaster.distorted.org.uk:files/
+ puts -nonewline "Send to:"
+ foreach host {ustrat uartist} {
+ exec rsync -avD ca.cert crl cert req $host:etc/ca/
+ puts -nonewline " $host"