180ad320f4
This defers the creation of self-signed SSL certificates to the first time that httpd starts up. This has several advantages: * Waiting until the first boot will help avoid some issues with limited entropy in the install process. * The certificates can be regenerated automatically whenever they are removed, which helps with tools such as virt-sysprep * The certificates are now generated by SSCG, which produces a limited-trust CA alongside it that can be safely imported by a client. For more information on SSCG, see: https://sgallagh.wordpress.com/2016/05/02/self-signed-ssltls-certificates-why-they-are-terrible-and-a-better-alternative/ Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
33 lines
944 B
Desktop File
33 lines
944 B
Desktop File
# See httpd.service(8) for more information on using the httpd service.
|
|
|
|
# Modifying this file in-place is not recommended, because changes
|
|
# will be overwritten during package upgrades. To customize the
|
|
# behaviour, run "systemctl edit httpd" to create an override unit.
|
|
|
|
# For example, to pass additional options (such as -D definitions) to
|
|
# the httpd binary at startup, create an override unit (as is done by
|
|
# systemctl edit) and enter the following:
|
|
|
|
# [Service]
|
|
# Environment=OPTIONS=-DMY_DEFINE
|
|
|
|
[Unit]
|
|
Description=The Apache HTTP Server
|
|
Wants=httpd-init.service
|
|
After=network.target remote-fs.target nss-lookup.target httpd-init.service
|
|
Documentation=man:httpd.service(8)
|
|
|
|
[Service]
|
|
Type=notify
|
|
Environment=LANG=C
|
|
|
|
ExecStart=/usr/sbin/httpd $OPTIONS -DFOREGROUND
|
|
ExecReload=/usr/sbin/httpd $OPTIONS -k graceful
|
|
# Send SIGWINCH for graceful stop
|
|
KillSignal=SIGWINCH
|
|
KillMode=mixed
|
|
PrivateTmp=true
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|