From c30242f1c5343c80c69d2b9d32a5fb7caa567f46 Mon Sep 17 00:00:00 2001
From: "Alan T. DeKok" <aland@freeradius.org>
Date: Thu, 20 May 2010 15:25:22 +0200
Subject: [PATCH] Do cert configuration stuff

Taken from Redhat
---
 redhat/freeradius-cert-config.patch | 68 +++++++++++++++++++++++++++++++++++++
 1 file changed, 68 insertions(+)
 create mode 100644 redhat/freeradius-cert-config.patch

diff --git a/redhat/freeradius-cert-config.patch b/redhat/freeradius-cert-config.patch
new file mode 100644
index 0000000..8390beb
--- /dev/null
+++ b/redhat/freeradius-cert-config.patch
@@ -0,0 +1,68 @@
+diff -r -u freeradius-server-2.1.8.orig/raddb/certs/ca.cnf freeradius-server-2.1.8/raddb/certs/ca.cnf
+--- freeradius-server-2.1.8.orig/raddb/certs/ca.cnf	2009-12-30 10:44:35.000000000 -0500
++++ freeradius-server-2.1.8/raddb/certs/ca.cnf	2010-01-08 12:35:23.000000000 -0500
+@@ -14,9 +14,9 @@
+ RANDFILE		= $dir/.rand
+ name_opt		= ca_default
+ cert_opt		= ca_default
+-default_days		= 365
++default_days		= 60
+ default_crl_days	= 30
+-default_md		= md5
++default_md		= sha1
+ preserve		= no
+ policy			= policy_match
+ 
+Only in freeradius-server-2.1.8/raddb/certs: ca.cnf~
+diff -r -u freeradius-server-2.1.8.orig/raddb/certs/client.cnf freeradius-server-2.1.8/raddb/certs/client.cnf
+--- freeradius-server-2.1.8.orig/raddb/certs/client.cnf	2009-12-30 10:44:35.000000000 -0500
++++ freeradius-server-2.1.8/raddb/certs/client.cnf	2010-01-08 12:35:37.000000000 -0500
+@@ -14,9 +14,9 @@
+ RANDFILE		= $dir/.rand
+ name_opt		= ca_default
+ cert_opt		= ca_default
+-default_days		= 365
++default_days		= 60
+ default_crl_days	= 30
+-default_md		= md5
++default_md		= sha1
+ preserve		= no
+ policy			= policy_match
+ 
+Only in freeradius-server-2.1.8/raddb/certs: client.cnf~
+diff -r -u freeradius-server-2.1.8.orig/raddb/certs/server.cnf freeradius-server-2.1.8/raddb/certs/server.cnf
+--- freeradius-server-2.1.8.orig/raddb/certs/server.cnf	2009-12-30 10:44:35.000000000 -0500
++++ freeradius-server-2.1.8/raddb/certs/server.cnf	2010-01-08 12:35:05.000000000 -0500
+@@ -14,9 +14,9 @@
+ RANDFILE		= $dir/.rand
+ name_opt		= ca_default
+ cert_opt		= ca_default
+-default_days		= 365
++default_days		= 60
+ default_crl_days	= 30
+-default_md		= md5
++default_md		= sha1
+ preserve		= no
+ policy			= policy_match
+ 
+Only in freeradius-server-2.1.8/raddb/certs: server.cnf~
+diff -r -u freeradius-server-2.1.8.orig/raddb/eap.conf freeradius-server-2.1.8/raddb/eap.conf
+--- freeradius-server-2.1.8.orig/raddb/eap.conf	2009-12-30 10:44:35.000000000 -0500
++++ freeradius-server-2.1.8/raddb/eap.conf	2010-01-08 12:36:04.000000000 -0500
+@@ -251,15 +251,6 @@
+ 			cipher_list = "DEFAULT"
+ 
+ 			#
+-
+-			#  This configuration entry should be deleted
+-			#  once the server is running in a normal
+-			#  configuration.  It is here ONLY to make
+-			#  initial deployments easier.
+-			#
+-			make_cert_command = "${certdir}/bootstrap"
+-
+-			#
+ 			#  Session resumption / fast reauthentication
+ 			#  cache.
+ 			#
+Only in freeradius-server-2.1.8/raddb: eap.conf~
-- 
2.1.4