...
Im Folgenden sind die nacheinander auszuführenden Schritte dargestellt:
Stoppen des at-Daemons
| Code Block |
|---|
|
# /etc/init.d/atd stop |
Löschen der CRL-AT-Jobs
| Code Block |
|---|
|
# /var/install/bin/certs-update-crl --deletejobs |
...
| Code Block |
|---|
|
# /var/install/bin/certs-update-crl --all |
Starten des at-Daemons
| Code Block |
|---|
|
# /etc/init.d/atd start |
Zusammenfassung aller Schritte
| Code Block |
|---|
|
# /etc/init.d/atd stop
# /var/install/bin/certs-update-crl --deletejobs
# cd /var/certs/ssl/crl
# rm *
# cd ..
# cp certs-update-crl-list.std certs-update-crl-list
# /var/install/bin/certs-create-tls-certs crl
# /var/install/bin/certs-update-crl --all
# /etc/init.d/atd start |
Skriptvorschlag zur automatischen CRL-Bereinigung
...
| Code Block |
|---|
|
#!/bin/sh
# CRL_cleanup
atdrunning=no
(/etc/init.d/atd status | grep "is running") && atdrunning=yes
if [ "${atdrunning}" = "yes" ]
then
/etc/init.d/atd stop
fi
hostname=$(hostname -f)
echo | /var/install/bin/certs-update-crl --deletejobs
echo
cd /var/certs/ssl/crl
crls=$(ls)
for f in ${crls}
do
if echo ${f} | grep -vq "^${hostname}"
then
rm ${f}
fi
done
cd ..
cp certs-update-crl-list.std certs-update-crl-list
echo | /var/install/bin/certs-update-crl --all
echo
if [ "${atdrunning}" = "yes" ]
then
/etc/init.d/atd start
fi |