From a6a2f4a09a0e7c3bdb876c394324347d53fe0610 Mon Sep 17 00:00:00 2001 From: Thomas Lange Date: Fri, 23 Dec 2016 09:16:27 +0100 Subject: mktemp now creates the temporary CSR file by itself and with restricted UNIX file permissions. --- painless-le.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/painless-le.sh b/painless-le.sh index 887b111..65a4a98 100755 --- a/painless-le.sh +++ b/painless-le.sh @@ -51,7 +51,7 @@ LETSENCRYPT_ENDPOINT="https://acme-v01.api.letsencrypt.org/directory" # Define required paths #=============================================================================== OPENSSLCONF="/etc/ssl/openssl.cnf" - REQUESTFILE=`mktemp -u /tmp/letsencrypt.XXXX.csr` + REQUESTFILE=`mktemp /tmp/painless-le.XXXXXXXXXX.csr` CONFIDENTIAL="${ARGUMENT_DIRECTORY%/}/confidential.pem" INTERMEDIATE="${ARGUMENT_DIRECTORY%/}/intermediate.pem" CERTIFICATE_ONLY="${ARGUMENT_DIRECTORY%/}/certificate_only.pem" -- cgit v1.2.3