jimallman/gist:2c60be5eb49e7a443133 Secret

## gistfile1.txt
        - manual scp of private and public key files for HTTPS...
           $ cd ~/.ssh/opentree/ssl-keys
          NOTE that we can't place these remotely, since admin != root
           $ scp opentreeoflife.org.key admin@ot##:~
           $ scp STAR_opentreeoflife_org.zip admin@ot##:~
          Login as root for final placement and security
           $ ssh admin@ot##
           $ sudo mv opentreeoflife.org.key /etc/ssl/private/
           $ sudo chown root:root /etc/ssl/private/opentreeoflife.org.key
           $ sudo chmod 600 /etc/ssl/private/opentreeoflife.org.key
          Create a dir to hold our public key
           $ sudo mkdir -p /etc/ssl/certs/opentree
           $ sudo chmod 755 /etc/ssl/certs/opentree
           $ sudo mv STAR_opentreeoflife_org.zip /etc/ssl/certs/opentree/
           $ cd /etc/ssl/certs/opentree
           $ sudo unzip STAR_opentreeoflife_org.zip
          This creates a complete chain of certs here
           $ sudo chown root:root ./*
           $ sudo chmod 644 ./*
        - other steps should be covered by deployment tools
	- manual scp of private and public key files for HTTPS...
	$ cd ~/.ssh/opentree/ssl-keys
	NOTE that we can't place these remotely, since admin != root
	$ scp opentreeoflife.org.key admin@ot##:~
	$ scp STAR_opentreeoflife_org.zip admin@ot##:~
	Login as root for final placement and security
	$ ssh admin@ot##
	$ sudo mv opentreeoflife.org.key /etc/ssl/private/
	$ sudo chown root:root /etc/ssl/private/opentreeoflife.org.key
	$ sudo chmod 600 /etc/ssl/private/opentreeoflife.org.key
	Create a dir to hold our public key
	$ sudo mkdir -p /etc/ssl/certs/opentree
	$ sudo chmod 755 /etc/ssl/certs/opentree
	$ sudo mv STAR_opentreeoflife_org.zip /etc/ssl/certs/opentree/
	$ cd /etc/ssl/certs/opentree
	$ sudo unzip STAR_opentreeoflife_org.zip
	This creates a complete chain of certs here
	$ sudo chown root:root ./*
	$ sudo chmod 644 ./*
	- other steps should be covered by deployment tools