kill me

VM_OPENSSL_APACHE.sh

@@ -11,11 +11,6 @@ sudo yum install -y mod_session
 id -u john &>/dev/null || useradd john
 echo "password" | passwd --stdin john
 
-# dar acesso ao apache para ler o .google_authenticator
-usermod -aG apache john
-sudo chown apache:apache /home/john/.google_authenticator
-sudo chmod 660 /home/john/.google_authenticator
-
 if_dentro="enp0s8"
 ip_dentro="10.60.0.1"
 ifconfig $if_dentro $ip_dentro netmask 255.255.255.0
@@ -36,7 +31,6 @@ cp ca/dh2048.pem $CA_DIR
 killall openssl 2>/dev/null
 openssl ocsp -index $CA_DIR/index.txt -port 8888 -rsigner $CA_DIR/ca.crt -rkey $CA_DIR/ca.key -CA $CA_DIR/ca.crt -text &
 
-
 # apache
 mkdir -p /etc/httpd/ssl
 cp ca/ca.crt /etc/httpd/ssl/
@@ -46,11 +40,6 @@ cp conf/ssl.conf /etc/httpd/conf.d/ssl.conf
 cp conf/httpd.conf /etc/httpd/conf/httpd.conf
 cp conf/httpd-totp /etc/pam.d/httpd-totp
 
-# NOTA(vasco) é preciso desativar home protection outra vez
-mkdir -p /etc/systemd/system/httpd.service.d
-echo -e "[Service]\nProtectHome=false" > /etc/systemd/system/httpd.service.d/override.conf
-systemctl daemon-reload
-
 # sim, é preciso fazer isto para carregar serviços
 echo "LoadModule session_module modules/mod_session.so" > /etc/httpd/conf.modules.d/01-session.conf
 echo "LoadModule session_cookie_module modules/mod_session_cookie.so" >> /etc/httpd/conf.modules.d/01-session.conf
@@ -60,4 +49,4 @@ echo "LoadModule auth_form_module modules/mod_auth_form.so" > /etc/httpd/conf.mo
 cp -r www/* /var/www/html/
 chown -R apache:apache /var/www/html/
 
-systemctl enable --now httpd
+httpd -X