Ask Your Question

Best place to store SSL certs and Key files

asked 2018-07-30 00:39:19 -0600

Sudharaka gravatar image

Hi everyone,

I am at the verge of setting up OpenVPN client on my Fedora workstation. It's all done basically except I have a small doubt. I was wondering what the best place to store the SSL certificate and key files. There's lots of conflicting opinions in the internet and it seem that SSL certs can be placed in /etc/ssl/certs; however I didn't see where the key files should be placed. Does these locations really matter?

Thanks for all your time.

edit retag flag offensive close merge delete

3 Answers

Sort by ยป oldest newest most voted

answered 2018-07-30 08:32:51 -0600

a-zander gravatar image

On my Fedora workstation, /etc/ssl/certs is a symlink to /etc/pki/tls/certs.

I would recommend putting the key files in /etc/pki/tls/private/

edit flag offensive delete link more

answered 2018-07-30 05:08:15 -0600

Aeyoun gravatar image

What would make any place better than anywhere else? You can place them wherever you want, except for software with specific requirements.

Just make sure to adjust your file permissions and SELinux policies to limit access to the files to only the program that needs to access them.

edit flag offensive delete link more

answered 2018-08-01 00:32:48 -0600

Sudharaka gravatar image

Thanks much for both of your answers. I have to read on SELinux policies and how they work. :)

edit flag offensive delete link more

Question Tools

1 follower


Asked: 2018-07-30 00:39:19 -0600

Seen: 99 times

Last updated: Aug 01 '18