On Tue Mar 05, 2002 at 09:27:30AM -0800, [EMAIL PROTECTED] wrote: > > I have two questions: > > > > 1. Can we expect to see a rollback to a single httpd.conf file in the > > future? The current setup when this config file is splitted all over the > > place is very annoying to me. > > Amen! I've gotten to the point that I just download apachetoolbox and > build my own as I can't stand these multiple config files. > > One more thing that I might request is to have apachectl be able to > start w/o doing startssl by default. The reason for this (at least for > me) is that I have to supply a password to start SSL and on a remote > server, if apache's configured to come up at boot time (and if you've > just re-compiled a kernel or for some other reason the machine bounces), > you're screwed. It'll just sit there prompting you for your cert passwd. > Maybe have two seperate /etc/init.d/httpd and /etc/init.d/https init > scripts or something?
Make your certs properly so you don't have to do this. ie. # mv server.key server.key.des # openssl rsa -in server.key.des -out server.key No more password prompts on starting apache. Of course, make sure your server.key.* files are properly secured (ie. not accessible by the world). -- MandrakeSoft Security; http://www.mandrakesecure.net/ "lynx -source http://www.freezer-burn.org/bios/vdanen.gpg | gpg --import" 1024D/FE6F2AFD 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD Current Linux kernel 2.4.8-34.1mdk uptime: 42 days 18 hours 4 minutes.
msg58836/pgp00000.pgp
Description: PGP signature
