Merge remote-tracking branch 'upstream/2.3' into main

author: Be <be@mixxx.org> 2020-12-14 05:17:19 -0600
committer: Be <be@mixxx.org> 2020-12-14 05:17:19 -0600
commit: dff536b605f2024ca731e521fd765ca7c7f6e224 (patch)
tree: 622240b547ca847d9ace22505afb59dea83c001d /packaging/certificates/README.md
parent: 244674929a7f66d93c168f173754868fdd801ba1 (diff)
parent: 13fd25a00ff9bbfb9f0c80ca78ae6c4111b7abdf (diff)
1 files changed, 20 insertions, 0 deletions
diff --git a/packaging/certificates/README.md b/packaging/certificates/README.md
new file mode 100644
index 0000000000..7e171873c7
--- /dev/null
+++ b/packaging/certificates/README.md
@@ -0,0 +1,20 @@
+
+# Key Rotation
+
+# downloads-hostgator.mixxx.org
+
+SSH access is granted via an RSA key stored in `build/certificates/downloads-hostgator.mixxx.org.key`.
+
+To rotate this key, generate a new RSA key with a strong password (e.g. 32 character randomly generated).
+
+```
+ssh-keygen -t rsa -b 4096 -f downloads-hostgator.mixxx.org.key
+```
+
+Copy the **public** key to `$HOME/.ssh/authorized_keys`, replacing the old file to remove access for the current key.
+
+Encrypt the password using `travis encrypt` and update `.travis.yml`.
+
+```
+travis encrypt DOWNLOADS_HOSTGATOR_DOT_MIXXX_DOT_ORG_KEY_PASSWORD=hunter2 -r mixxxdj/mixxx
+```
author	Be <be@mixxx.org>	2020-12-14 05:17:19 -0600
committer	Be <be@mixxx.org>	2020-12-14 05:17:19 -0600
commit	dff536b605f2024ca731e521fd765ca7c7f6e224 (patch)
tree	622240b547ca847d9ace22505afb59dea83c001d /packaging/certificates/README.md
parent	244674929a7f66d93c168f173754868fdd801ba1 (diff)
parent	13fd25a00ff9bbfb9f0c80ca78ae6c4111b7abdf (diff)