John H. Robinson, IV wrote:
HTTPS. We do this already. We manage it already. While Apache does not use t to ecrypt data, it does use the certifcate(key) to perform identifcation. You don;t store your HTTPS key unencrypted on the disk, do you?
I do not know of any production shop that DOES store the HTTPS key encrypted on disk. The first time the site is down because you weren't there to unlock the key or the box rebooted somehow and the site didn't come up automatically you quickly realize it isn't worth it. Better to just keep the box secure.
How about some practical suggestions which you have actually implemented on how to accomplish these things? Practical suggestions will be littered with the phrase "good enough".
-- Tracy R Reed http://ultraviolet.org A: Because we read from top to bottom, left to right Q: Why should I start my reply below the quoted text -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
