Galène videoconferencing server discussion list archives
 help / color / mirror / Atom feed
* [Galene]  ANNOUNCE: Galène 0.3.1
@ 2021-02-26 18:21 Juliusz Chroboczek
  0 siblings, 0 replies; only message in thread
From: Juliusz Chroboczek @ 2021-02-26 18:21 UTC (permalink / raw)
  To: galene

Dear all,

Version 0.3.1 of the Galène videoconferencing server is available from

  git clone -b galene-0.3.1

For more information about Galène, please see

Just a very minor revision, in order to give a stable version number to
packagers.  We now notice when the TLS certificate has changed on disk,
and reload it with no service interruption.  If no TLS certificate is
present (neither key.pem nor cert.pem files are present), we automatically
generate a self-signed certificate.

In order to rotate the TLS certificate, just move the new certificate over
the old one, taking care to use the right permissions:

  sudo chown galene:galene cert.pem key.pem
  sudo chmod go-r key.pem
  sudo mv cert.pem key.pem ~galene/data/

Since the certificate is stored in two files, there exists a small window
of time when the cert.pem and key.pem don't match.  If you're very
unlucky, a user may choose to connect during that window; in that case,
the user will receive an "Internal server error", and the issue will be
duly logged.  The user will recover as soon as they hit Reload.

26 February 2021: Galène 0.3.1

  * We now notice when the TLS certificate has changed on disk; which can
    therefore be rotated without a restart.
  * We now generate a self-signed certificate if none is found on disk.

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2021-02-26 18:21 UTC | newest]

Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-02-26 18:21 [Galene] ANNOUNCE: Galène 0.3.1 Juliusz Chroboczek

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox