fixed error in vm guide, added fixes in revamp

[feisty_meow.git] / scripts / site_avenger / revamp_cakelampvm.sh

diff --git a/scripts/site_avenger/revamp_cakelampvm.sh b/scripts/site_avenger/revamp_cakelampvm.sh
index 53464faf539cc7cc7cc7669801a69efda9bebb99..8370cbde9a8606fd2f87c38f902bfde764d2904a 100644 (file)
--- a/scripts/site_avenger/revamp_cakelampvm.sh
+++ b/scripts/site_avenger/revamp_cakelampvm.sh
@@ -137,10 +137,11 @@ fi
 ##############
 
 # fix up the apache site so that HSTS is disabled.  otherwise we can't view
-# https site once the domain name switch has occurred.
+# the https site for cakelampvm.com once the domain name switch has occurred.
 
 # we operate only on our own specialized tls conf file.  hopefully no one has messed with it besides revamp.
-search_replace "^[     ]*Header always set Strict-Transport-Security.*" "# not good for cakelampvm.com -- Header always set Strict-Transport-Security \"max-age=63072000; includeSubdomains;\"" /etc/apache2/conf-library/tls-enabling.conf
+# note the use of the character class :blank: below to match spaces or tabs.
+search_replace "^[[:blank:]]*Header always set Strict-Transport-Security.*" "# not good for cakelampvm.com -- Header always set Strict-Transport-Security \"max-age=63072000; includeSubdomains;\"" /etc/apache2/conf-library/tls-enabling.conf
 if [ $? -ne 0 ]; then
   echo the apache tls-enabling.conf file seems to have already been patched to disable strict transport security.  good.
 else
@@ -148,6 +149,9 @@ else
   restart_apache
 fi
 
+##############
+
+# 
 
 ##############