While trying to figure out <URL:http://bugs.skolelinux.org/show_bug.cgi?id=1409>, it occured to me that the approach taken in the snakeoil-on-ice script would only work when running on the main-server, and would only work if the users log in on the main-server (or a thin client / diskless workstation booting off the main-server). On other machines, the symlink /etc/skel/.mozilla/firefox/debian-edu.default/cert_override.txt would point to a non-existing file.
Did I misunderstand something? If I am right, we need something like /etc/init.d/fetch-ldap-cert to make sure all clients have the web server certificate available when a user log in for the first time on that client. Happy hacking, -- Petter Reinholdtsen -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
