Any thought to a good way to restart funcd via func?
We were talking the other day about the following situation: - certmaster/overlord is compromised - keys/CA are stolen clearly a CRL won't work here. The safest bet is to nuke everything from orbit. But if you have no reason to believe some other machines have been compromised it'd be convenient to issue a command to all your minions that says: destroy your keys, destroy your ca info and restart the daemon. How well will funcd play if it is restarted as part of the command? -sv _______________________________________________ Func-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/func-list
