mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-08-05 16:33:50 +00:00
docs: tlscerts: Fix a few broken links
Signed-off-by: Ville Skyttä <ville.skytta@iki.fi> Reviewed-by: Erik Skultety <eskultet@redhat.com>
This commit is contained in:
parent
6a1f5e8a4f
commit
97f99b4bd4
@ -125,12 +125,12 @@ of the server and clients. There are two distinct checks involved:
|
|||||||
server. Checking done by client by matching the certificate that
|
server. Checking done by client by matching the certificate that
|
||||||
the server sends to the server's hostname. May be disabled by adding
|
the server sends to the server's hostname. May be disabled by adding
|
||||||
<code>?no_verify=1</code> to the
|
<code>?no_verify=1</code> to the
|
||||||
<a href="#Remote_URI_parameters">remote URI</a>.
|
<a href="uri.html#Remote_URI_parameters">remote URI</a>.
|
||||||
</li>
|
</li>
|
||||||
<li> The server should know that only permitted clients are
|
<li> The server should know that only permitted clients are
|
||||||
connecting. This can be done based on client's IP address, or on
|
connecting. This can be done based on client's IP address, or on
|
||||||
client's IP address and client's certificate. Checking done by the
|
client's IP address and client's certificate. Checking done by the
|
||||||
server. May be enabled and disabled in the <a href="#Remote_libvirtd_configuration">libvirtd.conf file</a>.
|
server. May be enabled and disabled in the <a href="remote.html#Remote_libvirtd_configuration">libvirtd.conf file</a>.
|
||||||
</li>
|
</li>
|
||||||
</ul>
|
</ul>
|
||||||
<p>
|
<p>
|
||||||
@ -142,7 +142,7 @@ your own CA and tell your server(s) and clients to trust certificates
|
|||||||
issues by your own CA. Follow the instructions in the next section.
|
issues by your own CA. Follow the instructions in the next section.
|
||||||
</p>
|
</p>
|
||||||
<p>
|
<p>
|
||||||
Be aware that the <a href="#Remote_libvirtd_configuration">default
|
Be aware that the <a href="remote.html#Remote_libvirtd_configuration">default
|
||||||
configuration for libvirtd</a> allows any client to connect provided
|
configuration for libvirtd</a> allows any client to connect provided
|
||||||
they have a valid certificate issued by the CA for their own IP
|
they have a valid certificate issued by the CA for their own IP
|
||||||
address. You may want to change this to make it less (or more)
|
address. You may want to change this to make it less (or more)
|
||||||
@ -236,7 +236,7 @@ include the SAN fields.
|
|||||||
</p>
|
</p>
|
||||||
<p>
|
<p>
|
||||||
In the example below, clients will be connecting to the
|
In the example below, clients will be connecting to the
|
||||||
server using a <a href="#Remote_URI_reference">URI</a> of
|
server using a <a href="uri.html#URI_remote">URI</a> of
|
||||||
<code>qemu://compute1.libvirt.org/system</code>, so the CN
|
<code>qemu://compute1.libvirt.org/system</code>, so the CN
|
||||||
must be "<code>compute1.libvirt.org</code>".
|
must be "<code>compute1.libvirt.org</code>".
|
||||||
</p>
|
</p>
|
||||||
|
Loading…
Reference in New Issue
Block a user