Le-am citit de foarte multe ori. Problema este ca zice "never compromise it[certificate], by removing the passphrase" Am inteles ca se poate da parola ca un parametru intrun script bash, perl, etc.? Dar nu stiu eu cum sa procedez?
//Marius > On Friday 31 October 2003 11:57, Marius Pana wrote: > > Salutare, > > Iata ce am...Un server linux cu apache si ssl configurat frumos cu > > certificatul si cheie. Fiecare data cand pornesc serverul de web ma > > intreaba de "passphare'ul certificatului". Cum as putea sa scriu un > > script care sai dea frumusel parola si sa nu ma mai intrebe pe mine sa o > > bag de mana. Asta ar putea sa fie o problema daca el cade ca o sa ramana > > asteptand o parola daca nu e nimeni langa el. Merci, > > Pai elimina passphrase-ul. > > Uite cum se face un certificat: > > CERTIFICATES > If you're going to serve SSL/HTTPS you will need a server certificate. > There are a bunch of companies that will issue one for you; see the > lists at http://www.apache-ssl.org/#Digital_Certificates and > http://www.modssl.org/docs/2.4/ssl_faq.html#ToC23 > > You can also create one for yourself, using the openssl tool. > > Step one > - create the key and certificate request: > openssl req -new > cert.csr > > Step two - remove the passphrase from the key: > openssl rsa -in privkey.pem -out key.pem > > Step three - convert the certificate request into a signed certificate: > openssl x509 -in cert.csr -out cert.pem -req -signkey key.pem -days 365 > > This creates four files. The ones you want are cert.pem and key.pem. > You don't need cert.csr and privkey.pem, and may remove them. --- Detalii despre listele noastre de mail: http://www.lug.ro/
