acme-tiny-0.2-1.20170516gitaf025f5.fc26$>' רV@>H? d  * k 4:AH4 \    h    T   8 T  o( 8 9 : =>?@GH@IXY\]8^ bdefltuTvw x\yCacme-tiny0.21.20170516gitaf025f5.fc26Tiny auditable script to issue, renew Let's Encrypt certificatesThis is a tiny, auditable script that you can throw on your server to issue and renew Let's Encrypt certificates. Since it has to be run on your server and have access to your private Let's Encrypt account key, I tried to make it as tiny as possible (currently less than 200 lines). The only prerequisites are python and openssl. Well, that and a web server - but then you only need this with a web server. This package adds a simple directory layout and timer service that runs acme_tiny on installed CSRs as the acme user for privilege separation.Y^buildvm-ppc64le-10.ppc.fedoraproject.orgxFedora ProjectFedora ProjectMITFedora ProjectApplications/Internethttps://github.com/diafygi/acme-tinylinuxnoarchgetent group acme > /dev/null || groupadd -r acme getent passwd acme > /dev/null || /usr/sbin/useradd -g acme \ -c "Tiny Auditable ACME Client" \ -r -d /var/lib/acme -s /sbin/nologin acme exit 0 if [ $1 -eq 1 ] ; then # Initial installation systemctl --no-reload preset acme-tiny.service acme-tiny.timer >/dev/null 2>&1 || : fi if [ $1 -eq 0 ] ; then # Package removal, not upgrade systemctl --no-reload disable --now acme-tiny.service acme-tiny.timer > /dev/null 2>&1 || : fi if [ $1 -ge 1 ] ; then # Package upgrade, not uninstall systemctl try-restart acme-tiny.service acme-tiny.timer >/dev/null 2>&1 || : fi 'P8i:oAA큤A큤AAA큤AAY^Y^=Y^=Y^Y^Y^Y^Y^Y^Y^Y^=YY^YY^Y^Y^Y^Y^Y^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_tiny/usr/libexec/acme-tiny/signrootrootrootrootrootrootrootrootrootrootrootrootrootrootacmeacmeacmeacmeacmeacmerootrootrootrootrootrootrootrootrootrootrootrootrootrootacmeacmeacmeacmeacmeacmeacme-tiny-0.2-1.20170516gitaf025f5.fc26.src.rpmacme-tinyconfig(acme-tiny) @@    /bin/sh/bin/sh/bin/sh/bin/sh/bin/sh/usr/bin/python3config(acme-tiny)opensslrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadow-utilssystemdsystemdsystemd0.2-1.20170516gitaf025f5.fc263.0.4-14.6.0-14.0-15.2-14.13.0.1Y^&@X@XWW@W@WWF@WWhWhW@WWt@Stuart D. Gathman 0.2-1.20170616gitaf025f5Fedora Release Engineering - 0.1-12.20160810git5a7b4e7Miro Hrončok - 0.1-11.20160810git5a7b4e7Stuart D. Gathman 0.1-10.20160810git5a7b4e7Stuart D. Gathman 0.1-9.20160810git5a7b4e7Stuart D. Gathman 0.1-8Stuart D. Gathman 0.1-7Stuart D. Gathman 0.1-6Stuart D. Gathman 0.1-5Stuart D. Gathman 0.1-4Stuart D. Gathman 0.1-3Stuart D. Gathman 0.1-2Stuart D. Gathman 0.1-1- BZ#1468045 Update to new upstream version - BZ#1409686 Message.getallmatchingheaders() is broken in python3.- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- Rebuild for Python 3.6- Fix cert writable check in sign script - More tips in README-fedora.md- Use %{systemd_requires} - Remove unneeded cronie, python dependencies - Add acme-tiny.timer to systemd scriptlets - Add README-fedora.md - acme_tiny: Fix --chain patch for python2.6 (el6) - acme_tiny: Suppress traceback on error- Add use_systemd flag to use systemd timer and enable on Fedora and epel7 - Enable use_python3 flag for Fedora (but not epel7).- sign: Actually use the new --chain flag - cron: Make days to expiration explicit - spec: Set file modes with install - acme.conf: mark as config- Python3 fixes for cert-check - acme-tiny: Update patch to leave default behavior unchanged - make /var/lib/acme readable by all except private- sign: Use tmp output to avoid wiping existing cert on error - acme_tiny: get intermediate cert from acme protocol- Fix path of acme_tiny and make days explicit in sign script - Add crontab- Add global acme httpd conf - Append intermediate certs, add current lets-encrypt intermediate cert- add private, csr, certs directories - add sign script suitable for cron- Initial RPM/bin/sh/bin/sh/bin/sh/bin/sh 0.2-1.20170516gitaf025f5.fc260.2-1.20170516gitaf025f5.fc26 acme.confacme-tiny.serviceacme-tiny.timeracme-tinysignacme-tinyacme-tiny-signacme_tinycert-checkacme-tinyREADME-fedora.mdREADME.mdacme-tinyLICENSEacmecertscsrlets-encrypt-x3-cross-signed.pemprivatechallenges/etc/httpd/conf.d//usr/lib/systemd/system//usr/libexec//usr/libexec/acme-tiny//usr/sbin//usr/share/doc//usr/share/doc/acme-tiny//usr/share/licenses//usr/share/licenses/acme-tiny//var/lib//var/lib/acme//var/www/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mcpu=power8 -mtune=power8drpmxz2noarch-redhat-linux-gnuASCII textdirectoryPOSIX shell script, ASCII text executablePython script, ASCII text executableRRRhttpdmod_sslnginxhttpdmod_sslnginxutf-8?7zXZ !#,]"k%9o0 rxBvX*T~}Y$nXUjt"S0'9ys"Y -#REՒiɄĥhV )>65>c X23L]8gctW?1 =1ZZ"B'EZ"&JYh1%j ռnI L{$©7~'aM ꨵ/tYt$ɳ崻B<媃%DŽԈ1?63c5hrȚg9_38:4KUwkLa݊҇u;`WDiz(jSWr)R6(*hkcWtHL=r"]Bfp>=H+Mox[M V .]\JMg˥lkds6A\ (<{3Ot0lm {T6 w0ա4p2okQVא^lxQwLV T\Z:'g[cnͥPuM+%RN2_P8o!&X\~U>6~aS?_ޞ `| 0(A"1؟"D.G t؟"۪G:d9Boٕ>\f-&IKt.TkIo_PRUggTGqPDىdMMu`0@B{J=)Vw-"Lۍ({DS!S1 Mk0<Ǿ$Ԓ"MۨiXS{Fn&D@ݺrD߹/@2EӽqjBy-K.Ά5/йjMIe90B Q Lf>16|)6pxS<øM!en+嗏3L, (1l3%>Caʃ=%$4GT}^n,壽ڷP0GLR8n:ܸti%t͒5w:x!ɩsk!yQ,GEB͊",ieTL_fn"A;[)̀dUC[ن!_ss2i |(G-.K0-Wc9]nt.;8Gv҈2#fHr<#iрQ [jDSm'~~>*L$M!*$*2}8xH鼕HS_;U/!;s}Lfdz0tk!`+9d ϺxbPF1g#kGv]@s YRjBH~ ,>F^5*{vI@8nJ}Ĩ"YƳ*^Qed G(xλ\$?r27"[CY3ہbS޳̕! lƈ'!،Pu u'82D **"?# YZ