From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <808c2a1d827ad37ab041b56f5822cb77@plan9.bell-labs.com> From: "Russ Cox" To: 9fans@cse.psu.edu, sah@softcardsystems.com In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Subject: [9fans] Re: factotum Date: Fri, 16 May 2003 12:06:10 -0400 Topicbox-Message-UUID: aec8bfc2-eacb-11e9-9e20-41e7f4b1d025 sah asks: > About a year ago you gave me a magic incantation > for cpurc that would set up a key in none's factotum > so that httpds calls would find it: > > auth/factotum -s factotum.httpd -n -m /n/kremvax -o none > auth/secretpem /usr/web/lib/key.pem > unmount /n/kremvax This functionality, which didn't actually work right anyway, has been replaced by the owner= tag on keys, which works well. Add the key to your normal factotum key ring, with the tag owner=none. Note also that auth/secretpem is no more (see rsa(8)). We don't need to run TLS services as bootes anymore. > I'm getting a usage error from factotum and it appears > that while the manpage states -o is valid, > /sys/src/cmd/auth/factotum/fs.c:/ARGBEGIN behaves > otherwise. I just fixed the man page. It already described the owner= tag but I'd forgotten to remove the -o text.