Declare RANDFILE to avoid issues with unable to write it
Remove error "unable to write 'random state'", cause by default there is no explicit home to set it and remove 'PRNG not seeded' by setting RANDFILE to do it. Also lower dhparam size to avoid 'execution expired' errors. Change-Id: I15993f8971ad0a03e1d8cb4a9ead806ee576925d Closes-Bug: #1536608
This commit is contained in:
parent
35fdff42f7
commit
71f877abd5
@ -24,9 +24,10 @@ class nailgun::nginx_nailgun(
|
|||||||
$dhparam = '/etc/pki/tls/dhparam.pem'
|
$dhparam = '/etc/pki/tls/dhparam.pem'
|
||||||
|
|
||||||
exec { 'create new dhparam file':
|
exec { 'create new dhparam file':
|
||||||
path => [ '/bin/', '/sbin/' , '/usr/bin/', '/usr/sbin/' ],
|
environment => 'RANDFILE=/root/.rnd',
|
||||||
command => "openssl dhparam -out ${dhparam} 4096",
|
path => [ '/bin/', '/sbin/' , '/usr/bin/', '/usr/sbin/' ],
|
||||||
creates => $dhparam,
|
command => "openssl dhparam -rand /dev/urandom -out ${dhparam} 2048",
|
||||||
|
creates => $dhparam,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user