From: Fabian Keil <fk@fabiankeil.de>
Date: Wed, 19 Feb 2020 14:01:45 +0000 (+0100)
Subject: Note that access to certificate-directory and ca-directory should be limited
X-Git-Tag: v_3_0_29~516
X-Git-Url: http://www.privoxy.org/gitweb/?p=privoxy.git;a=commitdiff_plain;h=f81cc485c64f26bbb699e948c655bd036f8d103c

Note that access to certificate-directory and ca-directory should be limited

... to Privoxy and the Privoxy admin.
---

diff --git a/doc/source/p-config.sgml b/doc/source/p-config.sgml
index 5a5a241d..877cbdf0 100644
--- a/doc/source/p-config.sgml
+++ b/doc/source/p-config.sgml
@@ -3945,6 +3945,10 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t</title>
     CA key, the CA certificate and the trusted CAs file
     are located.
    </para>
+   <para>
+    The permissions should only let &my-app; and the  &my-app;
+    admin access the directory.
+   </para>
   </listitem>
  </varlistentry>
  <varlistentry>
@@ -4182,6 +4186,10 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t</title>
     This directive specifies the directory where generated
     TLS/SSL keys and certificates are saved.
    </para>
+   <para>
+    The permissions should only let &my-app; and the  &my-app;
+    admin access the directory.
+   </para>
   </listitem>
  </varlistentry>
  <varlistentry>