2

Best place to store SSL certs and Key files

asked 2018-07-30 00:39:19 -0600

Sudharaka
105 ●4 ●7

Hi everyone,

I am at the verge of setting up OpenVPN client on my Fedora workstation. It's all done basically except I have a small doubt. I was wondering what the best place to store the SSL certificate and key files. There's lots of conflicting opinions in the internet and it seem that SSL certs can be placed in /etc/ssl/certs; however I didn't see where the key files should be placed. Does these locations really matter?

Thanks for all your time.

edit retag flag offensive close merge delete

3 Answers

Sort by » oldest newest most voted

2

answered 2018-07-30 08:32:51 -0600

a-zander
61 ●1 ●2

On my Fedora workstation, /etc/ssl/certs is a symlink to /etc/pki/tls/certs.

I would recommend putting the key files in /etc/pki/tls/private/

edit flag offensive delete link

2

answered 2018-07-30 05:08:15 -0600

1390 ●12 ●34 ●55 https://daniel.priv.no/

What would make any place better than anywhere else? You can place them wherever you want, except for software with specific requirements.

Just make sure to adjust your file permissions and SELinux policies to limit access to the files to only the program that needs to access them.

edit flag offensive delete link

0

answered 2018-08-01 00:32:48 -0600

Sudharaka
105 ●4 ●7

Thanks much for both of your answers. I have to read on SELinux policies and how they work. :)

edit flag offensive delete link

Question Tools

1 follower

Stats

Asked: 2018-07-30 00:39:19 -0600

Seen: 99 times

Last updated: Aug 01 '18

Related questions

Ask Fedora is community maintained and Red Hat or Fedora Project is not responsible for content. Content on this site is licensed under a CC-BY-SA 3.0 license.

Powered by Askbot version 0.10.2