Node.js + SSL

[tijsje]

To start my node.js server + ssl, I use the cert.combined file as certificate.
By default, the user has no rights here.
If I adjust the permissions, it works fine.
However, the file is repeatedly generated again and the permissions are reset to the default values.
Does anyone have a solution for this?

 

[zEitEr]

Hello,

If I adjust the permissions, it works fine.

What exactly permissions you change?

 

[tijsje]

Hello,



What exactly permissions you change?

The file is owned by diradmin with rw rights for the owner.
If i chmod it to 644 the local domain user can use it with node.js
The file will regularly rebuilt by DA or Let's Encrypt, and then the rights will be returned to 600

 

[zEitEr]

That's the security issue if you chmod it to 644.

I'd suggest copying the cert/key pair into /home/username/.ssl/ directory for example, and chmod it to 644, probably it's more secure than to allow access for all from its original place.

To keep cert/key updated a custom cron script can be used.