Or is it permitted to perform this commands as sudo user in production?
From: dencowboy hotmail com
To: jliggitt redhat com
CC: users lists openshift redhat com
Subject: RE: Use /etc/origin/master/files without sudo
Date: Mon, 15 Feb 2016 09:21:42 +0000
I understand, but than I'm unable to perform a command like this:
oadm ca create-server-cert --signer-cert=ca.crt \
--signer-key=ca.key --signer-serial=ca.serial.txt \
Because it's not permitted to read/use the ca.crt etc.
From: jliggitt redhat com
Date: Tue, 9 Feb 2016 11:45:37 -0500
Subject: Re: Use /etc/origin/master/files without sudo
To: dencowboy hotmail com
Depends on what you're using these files for... for dev, 755 is fine. For production, you should be guarding the keys closely, and probably requiring sudo access to read/write/sign certs.
On Tue, Feb 9, 2016 at 10:18 AM, Den Cowboy <dencowboy hotmail com> wrote: