From a6a2f4a09a0e7c3bdb876c394324347d53fe0610 Mon Sep 17 00:00:00 2001
From: Thomas Lange <code@nerdmind.de>
Date: Fri, 23 Dec 2016 09:16:27 +0100
Subject: mktemp now creates the temporary CSR file by itself and with
 restricted UNIX file permissions.

---
 painless-le.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/painless-le.sh b/painless-le.sh
index 887b111..65a4a98 100755
--- a/painless-le.sh
+++ b/painless-le.sh
@@ -51,7 +51,7 @@ LETSENCRYPT_ENDPOINT="https://acme-v01.api.letsencrypt.org/directory"
 # Define required paths
 #===============================================================================
      OPENSSLCONF="/etc/ssl/openssl.cnf"
-     REQUESTFILE=`mktemp -u /tmp/letsencrypt.XXXX.csr`
+     REQUESTFILE=`mktemp /tmp/painless-le.XXXXXXXXXX.csr`
     CONFIDENTIAL="${ARGUMENT_DIRECTORY%/}/confidential.pem"
     INTERMEDIATE="${ARGUMENT_DIRECTORY%/}/intermediate.pem"
 CERTIFICATE_ONLY="${ARGUMENT_DIRECTORY%/}/certificate_only.pem"
-- 
cgit v1.2.3