This file briefly explains the format of the configuration files for ssl-cert2. It is reccommended you use manage-ssl-cert2 (8) to make changes to the configuration. Though this may be useful if something goes wrong, or you are interested in preconfiguring things. In the directory containing these files there several global configurations, and a packages/ directory containing configuration for each package that uses the system. There are the default values for the info in the certificates in the files country (2 letter country code) state (state or province name) locality (locality name) organisation (organistation name) unit (organisational unit name) cn (common name (usually hostname or your name)) email (email address) If these files are empty then defaults may be used. If you wish them to be blank use a single . character instead. There are then files for each of the configuration options. Each file contains a single option value (true or false where not specified). manage_certs (whether ssl-cert2 should manage the certs at all) Then there are files containing state about the links that ssl-cert2 maintains. These files contain the output of a readlink command when the link was created so that the system knows whether the link has been changed. Normally you can leave these alone, but if ssl-cert2 reports a link has been modified then it is possible to make it believe that it hasn't by changing the value in these files. It is recommended that you use manage-ssl-cert2 (8) to do this however. Note that this will lead to ssl-cert2 deleting things, as it believes it knows how to create them again. If you have made modifications to the system the be aware that you can lose them by modifying these files. sitewide.link (the target of the /etc/ssl/certs/ssl-cert2-sitewide.pem link) sitewide-key.link (the target of the /etc/ssl/private/ssl-cert2-sitewide.pem link) hash_link (this is slightly different as it merely contains the value of the hash symlink pointing to the snakeoil-cert when it was created. This symlink will be removed on deletion.) In the packages dir is the state for each package that ssl-cert2 manages. Each package has an entry in the list file, and a directory to itself. Within this directory there are readlink files similar to above (cert_link and key_link). -- (C) 2006 James Westby Licensed under a BSD license. See /usr/share/doc/ssl-cert2/copyright.