On Fri, Mar 22, 2002 at 03:15:25PM +0100, eim wrote: > mod_ssl pass phrase related question > ==================================== > > Hallo Debian folks, > > I've installed the Debian package "libapache-mod-ssl" > on my workstation box in order to learn how to setup > http secure transactions with my Apache webserver. > > Once installed mod_ssl I've created a sample ssl > certification for my local workstation, https works > quite well and everything is ok, well nearly everything :) > > When I restart the apache by hand or it comes up > through Debian's init.d script it requires that I provide > the daemon with the pass phrase because some of my private > key files are encripted. > > How can I avoid this ? I mean let me assume I need to restart > my box from a remote connection, when the init.d script > is going to start apache I must be fisically there to provide > the daemon with my pass phrase, that's not always possible. > > Should I keep my key files unencrypted, or is there another > solution which preserves security ? http://www.modssl.org/docs/2.8/ssl_reference.html#ToC2 -- Nathan Norman - Micromuse Ltd. mailto:nnorman@micromuse.com Gil-galad was an Elven-king. | The Fellowship Of him the harpers sadly sing: | of the last whose realm was fair and free | the Ring between the Mountains and the Sea. | J.R.R. Tolkien
Attachment:
pgpqXsHvrCI2Z.pgp
Description: PGP signature