Skip to content

Suggested configuration file hierarchy

Ulric edited this page Jun 8, 2015 · 1 revision

Suggested file hierarchy:

/etc/pen      # General configuration files
/etc/pen/sni  # Private keys, certificates et al, including default certificate
/etc/pen/sni/example.com.key  # Private key for example.com
/etc/pen/sni/example.com.crt  # Certificate for example.com
/etc/pen/sni/example.com.ca   # CA's certificate for example.com
/etc/pen/sni/example.com.ocsp # OCSP response file, auto-loaded by this script
/etc/pen/sni/example.net.key  # Private key for example.net
/etc/pen/sni/example.net.crt  # Certificate for example.net
/etc/pen/sni/example.net.ca   # CA's certificate for example.net
/etc/pen/sni/example.net.ocsp # OCSP response file, auto-loaded by this script

Pen requires a default certificate in order to enable SSL. It is suggested that this certificate is placed in /etc/pen/sni with the other certificates.