* [Galene] ANNOUNCE: Galène 0.3.1
@ 2021-02-26 18:21 Juliusz Chroboczek
0 siblings, 0 replies; only message in thread
From: Juliusz Chroboczek @ 2021-02-26 18:21 UTC (permalink / raw)
To: galene
Dear all,
Version 0.3.1 of the Galène videoconferencing server is available from
git clone -b galene-0.3.1 https://github.com/jech/galene
For more information about Galène, please see
https://galene.org
Just a very minor revision, in order to give a stable version number to
packagers. We now notice when the TLS certificate has changed on disk,
and reload it with no service interruption. If no TLS certificate is
present (neither key.pem nor cert.pem files are present), we automatically
generate a self-signed certificate.
In order to rotate the TLS certificate, just move the new certificate over
the old one, taking care to use the right permissions:
sudo chown galene:galene cert.pem key.pem
sudo chmod go-r key.pem
sudo mv cert.pem key.pem ~galene/data/
Since the certificate is stored in two files, there exists a small window
of time when the cert.pem and key.pem don't match. If you're very
unlucky, a user may choose to connect during that window; in that case,
the user will receive an "Internal server error", and the issue will be
duly logged. The user will recover as soon as they hit Reload.
26 February 2021: Galène 0.3.1
* We now notice when the TLS certificate has changed on disk; which can
therefore be rotated without a restart.
* We now generate a self-signed certificate if none is found on disk.
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2021-02-26 18:21 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-02-26 18:21 [Galene] ANNOUNCE: Galène 0.3.1 Juliusz Chroboczek
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox