Viewing all changes in revision 3017.2.16.
- Committer: P. Christeas
- Date: 2010-11-23 13:58:44 UTC
- mto: (3017.1.14 xrg-merge) (3046.1.2 server-trunk)
- mto: This revision was merged to the branch mainline in revision 3042.
- Revision ID: p_christ@hol.gr-20101123135844-nr8k78qrmlyn19xb
setup: The ssl certs should *not* be distributed.
The meaning of any SSL certificate (even self-signed) is that it uniquely
identifies the server. So, if we have a generic cert distributed with our
packaging, we break that. We could not even generate a cert at the "build"
stage of our server, because that would be included in the packages.
If anybody needs to run OpenERP with SSL, they will need to generate the
certificate at the target server, possibly using ssl-cert.cfg as a sample.
Also, the "ssl" directory under bin/ would confuse some pythonic code that
had tried to "import ssl" (eg. urllib.py).
The meaning of any SSL certificate (even self-signed) is that it uniquely
identifies the server. So, if we have a generic cert distributed with our
packaging, we break that. We could not even generate a cert at the "build"
stage of our server, because that would be included in the packages.
If anybody needs to run OpenERP with SSL, they will need to generate the
certificate at the target server, possibly using ssl-cert.cfg as a sample.
Also, the "ssl" directory under bin/ would confuse some pythonic code that
had tried to "import ssl" (eg. urllib.py).
- files added:
- ssl-cert.cfg
- files removed:
- bin/server.cert
- bin/ssl
- files modified:
- setup.py
expand all
collapse all
added
removed
