On Tue, 20 Jul 1999, Shalom Nevet wrote:
> Dear open-ssl experts,
>
> Is there a way to create a certificate without PEM pass phrase?
>
> By using the "CA.sh" script to create certificate, you will be prompt for
> PEM phrase. It may be a good
> idea, however, in the need for server re-boot (auto-boot) the server will pause
> for user to enter password. Since only root can start the server I would
> like to create
> a startup script without the need to password.
> What is the best way to eliminate the need for pass phrase?
The password is attached to the private key (though the certificate
and private key may be in the same file).
To remove a passphrase from a private key you can use a command like:
openssl rsa -in pwkey.pem -out nopwkey.pem
Make sure that you seperate the key from the certificate (if they are
both in the same file). This can be done with a text editor.
Regards,
Damien Miller
--
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.ilogic.com.au/~dmiller
| Email: [EMAIL PROTECTED] (home) -or- [EMAIL PROTECTED] (work)
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
