Geek Answers Handbook

Should SSL certificate related files remain confidential (added to .gitignore)?

In the process of setting up the SSL certificate, several different files were created for my site,

  • server.csr
  • server.key
  • server.pass.key
  • site_name.crt

Should they be added to .gitignore before clicking on my site on github?

Sorry in advance if this is a stupid question.

+4
source share
1 answer

Should they be added to .gitignore before clicking on my site on github?

They should not be in the repo at all, that is, stored outside the repo.
Thus:

  • you do not need to manage .gitignore,
  • you can keep these keys somewhere safe.

GitHub 2013 , , . .

:

.

- "6 , " - . , "90 - , , , id_rsa"

2016 "" ( ) :

https://twitter.com/DomBurf/status/707473924137881600

OP :

, Heroku , ">heroku certs:add server.crt server.key" .

" Config Vars" :

- , . vars bashrc. Heroku config vars.

" Heroku: SSL" . Heroku . git.

+7

More articles:


All Articles