From nobody Fri Nov 08 17:36:47 2024
X-Original-To: ports-bugs@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4XlR2R6rMPz5cY7y
	for <ports-bugs@mlmmj.nyi.freebsd.org>; Fri, 08 Nov 2024 17:36:47 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "mxrelay.nyi.freebsd.org", Issuer "R10" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4XlR2R50Rhz3wmL
	for <ports-bugs@FreeBSD.org>; Fri,  8 Nov 2024 17:36:47 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1731087407;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding;
	bh=XyUnY+rya+Y8RCzaR+TwMuOxwbBHuXpjWaS8+KF8xAo=;
	b=Gq3sSbW33NcvT6F1Y+MH2bUTMYjI/EVTxEQLvP8ej0nfRqyrPMveWR1WmZkvYnvfVBUxV7
	LmJni+qzNEBtwFVpDLk7mIKY1mYEpyQ2PtLSJJvWhsPQ8zdhKRg5+cHLt7TFdzau6u5Gpa
	dJ2ctOqFW/ZdWb3WLNmkEhdsJyWacJfanTdKKKLZf0J8X4L4V6aE+N8MJ4WQ6uYvybaz6r
	q6bC8Wew/alYqx4Fahwqbe8f98a9STkl190XKKToDILLIZciGeRedlSSR2yGoR7Q8CgtFy
	VIR1mmQrbfOsRXi2NBlemeufyQGcS4Z9ripkYuDz/twIGo3rAuWGNnFLpgLXbg==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1731087407; a=rsa-sha256; cv=none;
	b=Pf/R9VnDWbUEOoRbhUXTEYPQp4AtrHEZjX9UB8WtufE3uWvl6MqPZXY9RKTPsHapvgWgSx
	frWEut9o1ps9ugPvHjA40JO4XZSAHfVy5IKGQ16O0+fgyQxv6HZnR1WUbIeOINwUu45Kj+
	e3yvwiqqr74o/39C6Ho2m6q0BtQUqaKYsUKpWaohoasoHjiwpVi1Xhn+GAqFel0MiLYE3o
	qBbH7Za0HJZzZCSyFQVD/7hBfdUxuL3gMShWYzEanyZce5g4gWp00/5LxImAb7cUb9Wc/4
	JFPm3z0/0I2n388ZRY+pA7jAMlV/KlGDKJtJZoTU4pj3yNPOuq266scXfDc5dA==
Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4XlR2R4CGYzfTQ
	for <ports-bugs@FreeBSD.org>; Fri,  8 Nov 2024 17:36:47 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
	by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 4A8Hal36034236
	for <ports-bugs@FreeBSD.org>; Fri, 8 Nov 2024 17:36:47 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
Received: (from www@localhost)
	by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 4A8HalMC034235
	for ports-bugs@FreeBSD.org; Fri, 8 Nov 2024 17:36:47 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: ports-bugs@FreeBSD.org
Subject: [Bug 282633] security/step-certificates
Date: Fri, 08 Nov 2024 17:36:47 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: new
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Ports & Packages
X-Bugzilla-Component: Individual Port(s)
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Some People
X-Bugzilla-Who: vince@vincentbentley.co.uk
X-Bugzilla-Status: New
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: ports-bugs@FreeBSD.org
X-Bugzilla-Flags: maintainer-feedback?
X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform
 op_sys bug_status bug_severity priority component assigned_to reporter cc
 flagtypes.name
Message-ID: <bug-282633-7788@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-ports-bugs
List-Help: <mailto:ports-bugs+help@freebsd.org>
List-Post: <mailto:ports-bugs@freebsd.org>
List-Subscribe: <mailto:ports-bugs+subscribe@freebsd.org>
List-Unsubscribe: <mailto:ports-bugs+unsubscribe@freebsd.org>
X-BeenThere: freebsd-ports-bugs@freebsd.org
Sender: owner-freebsd-ports-bugs@FreeBSD.org
MIME-Version: 1.0

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D282633

            Bug ID: 282633
           Summary: security/step-certificates
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-bugs@FreeBSD.org
          Reporter: vince@vincentbentley.co.uk
                CC: mw@wipp.bayern
             Flags: maintainer-feedback?(mw@wipp.bayern)
                CC: mw@wipp.bayern

There is a minor typographic error in the pkg info text that could trip up
newbies during configuration.

The text says:

  service step_ca configure

It should say:

  service step-ca configure


To see the message, run the following command:

root@ca:~ # pkg info -D step-certificates
step-certificates-0.27.2_1:
On install:
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D
Step Certificates requires additional configuration:

The simple way is via the service start script step_ca with:
service step_ca configure
When there is no configuration it will be created. User input is required!!!

The hard way would be manually via the step command.

Ensure to set the STEPPATH environment variable. This makes using the
commands much simpler.

Following are the defaults for step certificates and can be overridden by
rc.conf variables::
* The service is run under user step customizable by step_ca_user
* The service is run inder group step customizable by step_ca_group
* The base directory used for storing CA information is step_ca_stepdir
(%%PREFIX%%/etc/step)
* The CA informations is held under step_ca_steppath (%%PREFIX%%/etc/step/c=
a)
* The password required for automatic startup is in step_ca_password
(%%PREFIX%%/etc/step/password.txt)
* By default step certificates logs to syslog with a tag of step_ca

=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D

root@ca:~ #

--=20
You are receiving this mail because:
You are the assignee for the bug.=