On Thu, 16 Aug 2001, Miguel A.L. Paraz wrote:
> OK here's a practical problem. How can you restart a SSL webserver
> without prompting for a password from the tty? Either you store the private
> key unencrypted, but in the "safe" place being sought; or encrypt it, but
> keep the password/phrase - much smaller in terms of bytes - "safe".
I think the problem is when the machine reboots after a power
failure, the SSL webserver asks for the passphrase that you used to
encrypt the server's private key. If you are not around to supply
it, what happens? I think it is simpler to just store the server's
private key unencrypted in a safe place (file and directory permissions
to /home/httpd/conf/ssl.key should be appropriate).
PMana
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
