On Thu, 30 May 2002, Chris Hsiang wrote: > what exec I can use on win32 to submit the passphrase and also
You'd have to write your own script to do it. But keep in mind that protecting the _script_ with the passphrase hardcoded into it is hard, and even if you manage to do that, there are still problems protecting the key since the web server has the decrypted private key in-memory after you've submitted the passphrase. Whether passphrases are any good or not is a bit of an ongoing heated debate on this mailing list (AND NO, GUYS, LET'S NOT GO THROUGH THAT AGAIN PLEASE :-)... just suffice it to say that you should be aware of the security implications of either choice when deciding how best to protect your private key. > how do I get rid of the passphrase from my private key now? See http://www.modssl.org/docs/2.8/ssl_faq.html#ToC31 . It's in unix-speak, but it shouldn't be hard to see what to do. It's the openssl command that is the important one... and of course be sure to set the permissions correctly on the key. --Cliff ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
