On 11/20/2010 4:05 PM, Daniel Ruggeri wrote: > In mod_ssl there is a very handy option of making an exec callout for > SSLPassPhraseDialog > rather than to put a password for your private key in the conf file. The > obvious benefit > here is that one can then design a solution to meet any arbitrary number of > security > challenges before allowing that password to be delivered.
The right way to solve this is an 'Include secrets.conf' where secrets.conf is 600 owned root/root. > P.S. > I am opposed to mod_ssl's check that the argument to SSLPassPhraseDialog > exec:blah is a > file. This prevents calling an arbitrary executable with parameters. Thoughts? Agreed, patch warmly welcomed. Same with the actual keys and certs, which might be fetched via a named pipe or similar. -f is evil in these cases.
