Document a tip for enhancing security.

author František Dvořák <valtri@civ.zcu.cz>

Mon, 10 Mar 2014 15:47:27 +0000 (16:47 +0100)

committer František Dvořák <valtri@civ.zcu.cz>

Mon, 10 Mar 2014 16:05:49 +0000 (17:05 +0100)
author František Dvořák <valtri@civ.zcu.cz>
Mon, 10 Mar 2014 15:47:27 +0000 (16:47 +0100)
committer František Dvořák <valtri@civ.zcu.cz>
Mon, 10 Mar 2014 16:05:49 +0000 (17:05 +0100)
diff --git a/rocci-server/debian/README.Debian b/rocci-server/debian/README.Debian

index fbdff8d..1114de1 100644 (file)
--- a/rocci-server/debian/README.Debian
+++ b/rocci-server/debian/README.Debian
@@ -1,18 +1,20 @@
-Documentation:
+Documentation
+=============
  
-- https://github.com/sustr4/rOCCI-server/wiki/rOCCI-Server-Admin-Guide
+https://github.com/sustr4/rOCCI-server/wiki/rOCCI-Server-Admin-Guide
  
  
-Locations:
+Security
+========
  
-- everything in: /usr/lib/rocci-server
-- logs: /usr/lib/rocci-server/log
-- configuration:
-  - etc/rocci-server -> /usr/lib/rocci-server/etc
-  - /etc/apache2/site-available/occi-ssl
+Consider disabling user switching in passenger (see passenger-security.conf in
+rocci-server/examples).
  
  
-Automatically launched setup:
+Setup
+=====
+
+# Launched automaticaly:
  
  # rocci-server-apache
  a2enmod ssl
diff --git a/rocci-server/debian/rocci-server-apache.install b/rocci-server/debian/rocci-server-apache.install

index 807238f..e425c1f 100644 (file)
--- a/rocci-server/debian/rocci-server-apache.install
+++ b/rocci-server/debian/rocci-server-apache.install
@@ -1,2 +1,3 @@
  debian/etc     .
  debian/occi-ssl        etc/apache2/sites-available
+debian/passenger-security.conf usr/share/doc/rocci-server/examples/etc/apache2/conf.d
author	František Dvořák <valtri@civ.zcu.cz>
	Mon, 10 Mar 2014 15:47:27 +0000 (16:47 +0100)
committer	František Dvořák <valtri@civ.zcu.cz>
	Mon, 10 Mar 2014 16:05:49 +0000 (17:05 +0100)
rocci-server/debian/README.Debian		patch \| blob \| blame \| history
rocci-server/debian/rocci-server-apache.install		patch \| blob \| blame \| history