On Thu, Nov 30, 2000 at 11:39:07PM +0100, Mark Tiramani wrote:
> the following (global server config only) will do the trick:
>
> SSLPassPhraseDialog exec:/path/to/script/get_pass
>
> where get_pass is a script, executable etc. that picks up the server
> identifiers passed to it when mod_ssl/Apache starts up.
And of course, thsi script must NEVER be executable by a local
user on the machine, or [s]he could simply do...
echo ServerName:port | /path/to/script/get_pass
and could see the password in plaintext.
Martin
--
<[EMAIL PROTECTED]> | Fujitsu Siemens
Fon: +49-89-636-46021, FAX: +49-89-636-41143 | 81730 Munich, Germany
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
