Hi, On 2015-09-18 14:30, [email protected] wrote: >>> /etc/fusionforge/ssl-cert-scm.key not owned >>> /etc/fusionforge/ssl-cert-scm.pem not owned >>> /etc/fusionforge/ssl-cert.key not owned >>> /etc/fusionforge/ssl-cert.pem not owned > > I disagree, because those are certificates, plus they may be installed > by the user.
Right now I don't remember any package leaving around certificates ... Two packages that create them (but have different piuparts problems) are * courier-mta-ssl * dtc-xen and these packages mention some .pem file in their piuparts logs, but don't fail stunnel4 ejabberd puppetmaster-passenger keystone ftpd-ssl quassel-core telnetd-ssl courier-imap-ssl courier-pop-ssl dnssec-trigger freeradius-ldap freeradius freeradius-postgresql Andreas
