This doesn't actually install anything yet, it only throws the value of TEMPDIR to stdout and leaves the temporary directory in place so that the results of the conversion can be reviewed. I haven't messed with Java yet, or pulled in /etc/ssl/local but those are trivial additions at this point.
Obviously outstanding is any explanatory text whatsoever. How to adjust NSS consumers to use the shared DB might be of some importance. (I'll try for that tomorrow). :-)
As far as I can tell, the only remaining thing brought up in the previous thread was how to obtain and verify the file. I do like using the release branch as the default source (with version info as provided by Bruce's script on Anduin). Bruce, what do you think about signing that file for verification? Or even automatically updating the date and md5sum of the file in the book -- changelog would need to be skipped I think, but with that little concession, it should be reasonably easy to do from cron.
P.S. I'd appreciate a second set of eyes on convert_pem(). It works well enough, but I could not get it to play nicely using only pipes. As a result, right now it uses a total of three temporary files per conversion. This is terribly inefficient and I'd like to fix it, but I just can't see it tonight.
--DJ
make-ca.sh
Description: application/shellscript
-- http://lists.linuxfromscratch.org/listinfo/blfs-dev FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
