Re: Removing passphrase for Apache server
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tuesday 07 September 2004 19:53, Joe DeBattista wrote: Hi, I sent a query last week about removing a passphrase from an Apache server I have set up with openssl-0.9.7d and compiled with the gcc compiler. I thought I'd provide a little more information. When I try to remove the passphrase, it says I need a minimum of 4 characters in the passphrase. Is this something in this version of openssl, as I don't remember having this requirement with earlier versions? I generated the key with $openssl genrsa -des3 -rand randfile1:randfile2:randfile3 1024 \ /usr/local/apache2/conf/ssl.key/server.key I made a copy of server.key to server.bak and then tried the following command to redo the passphrase and get the following: # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key Enter pass phrase for server.bak: 21202:error:28069065:lib(40):UI_set_result:result too small:ui_lib.c:847:You must type in 4 to 4095 characters Is there a way around this? Something like that: openssl genrsa -passout pass: -des3 -rand randfile1:randfile2:randfile3 1024 | openssl rsa -passin pass: -out /usr/local/apache2/conf/ssl.key/server.key Torsten -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFBPsE+wicyCTir8T4RAtKXAJsE3EN+P2v40uPViYkcsm5Ayf3/QACfXoin xOecJp8J/MaEArbK2LdNS9c= =nPD9 -END PGP SIGNATURE- __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Removing passphrase for Apache server
Hi, I sent a query last week about removing a passphrase from an Apache server I have set up with openssl-0.9.7d and compiled with the gcc compiler. I thought I'd provide a little more information. When I try to remove the passphrase, it says I need a minimum of 4 characters in the passphrase. Is this something in this version of openssl, as I don't remember having this requirement with earlier versions? I generated the key with $openssl genrsa -des3 -rand randfile1:randfile2:randfile3 1024 \ /usr/local/apache2/conf/ssl.key/server.key I made a copy of server.key to server.bak and then tried the following command to redo the passphrase and get the following: # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key Enter pass phrase for server.bak: 21202:error:28069065:lib(40):UI_set_result:result too small:ui_lib.c:847:You must type in 4 to 4095 characters Is there a way around this? Joe DeBattista UCSF, ITS INTERNET: [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Removing passphrase for Apache server
When I try this, it tells me that this isn't a option in my version. This was compiled on an AIX version 5.1 box. # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key -nodes unknown option -nodes Joe DeBattista UCSF, ITS INTERNET: [EMAIL PROTECTED] On Tue, 7 Sep 2004, Oliver Welter wrote: # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key Enter pass phrase for server.bak: 21202:error:28069065:lib(40):UI_set_result:result too small:ui_lib.c:847:You must type in 4 to 4095 characters Add -nodes to the command Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Removing passphrase for Apache server
hi Joe, Joe DeBattista wrote: When I try this, it tells me that this isn't a option in my version. This was compiled on an AIX version 5.1 box. # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key -nodes unknown option -nodes sorry my mistake - the nodes option is valid in req node only... I dont know Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 smime.p7s Description: S/MIME Cryptographic Signature
RE: Removing passphrase for Apache server
Title: RE: Removing passphrase for Apache server If you notice carefully, the openssl rsa command is asking for the server.bak passphrase. Once you provide that passphrase (the one that you specified when using genrsa command), server.key will contain your un-passphrased private key. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Joe DeBattista Sent: Tuesday, September 07, 2004 10:53 AM To: [EMAIL PROTECTED] Subject: [BULK] - Removing passphrase for Apache server Hi, I sent a query last week about removing a passphrase from an Apache server I have set up with openssl-0.9.7d and compiled with the gcc compiler. I thought I'd provide a little more information. When I try to remove the passphrase, it says I need a minimum of 4 characters in the passphrase. Is this something in this version of openssl, as I don't remember having this requirement with earlier versions? I generated the key with $openssl genrsa -des3 -rand randfile1:randfile2:randfile3 1024 \ /usr/local/apache2/conf/ssl.key/server.key I made a copy of server.key to server.bak and then tried the following command to redo the passphrase and get the following: # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key Enter pass phrase for server.bak: 21202:error:28069065:lib(40):UI_set_result:result too small:ui_lib.c:847:You must type in 4 to 4095 characters Is there a way around this? Joe DeBattista UCSF, ITS INTERNET: [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: Removing passphrase for Apache server
Thanks, Himanshu. That did the trick. Joe DeBattista UCSF, ITS INTERNET: [EMAIL PROTECTED] On Tue, 7 Sep 2004, Himanshu Soni wrote: If you notice carefully, the openssl rsa command is asking for the server.bak passphrase. Once you provide that passphrase (the one that you specified when using genrsa command), server.key will contain your un-passphrased private key. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joe DeBattista Sent: Tuesday, September 07, 2004 10:53 AM To: [EMAIL PROTECTED] Subject: [BULK] - Removing passphrase for Apache server Hi, I sent a query last week about removing a passphrase from an Apache server I have set up with openssl-0.9.7d and compiled with the gcc compiler. I thought I'd provide a little more information. When I try to remove the passphrase, it says I need a minimum of 4 characters in the passphrase. Is this something in this version of openssl, as I don't remember having this requirement with earlier versions? I generated the key with $openssl genrsa -des3 -rand randfile1:randfile2:randfile3 1024 \ /usr/local/apache2/conf/ssl.key/server.key I made a copy of server.key to server.bak and then tried the following command to redo the passphrase and get the following: # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key Enter pass phrase for server.bak: 21202:error:28069065:lib(40):UI_set_result:result too small:ui_lib.c:847:You must type in 4 to 4095 characters Is there a way around this? Joe DeBattista UCSF, ITS INTERNET: [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Removing passphrase for Apache server
Hi, I have Apache 2.50.0 with the mod_ssl enabled on an AIX 5.1 machine. I compiled openssl-0.9.7d with the gcc compiler. When I first installed the key, I wanted to create it with no passphrase, but it said I needed a minimum of 4 characters. When I now try to reset it with the command # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key Enter pass phrase for server.bak: 21202:error:28069065:lib(40):UI_set_result:result too small:ui_lib.c:847:You must type in 4 to 4095 characters Is there an option that is set somewhere in openssl that requires the minimum 4 characters that can be turned off to allow a null passphrase? Joe DeBattista UCSF, ITS INTERNET: [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Removing passphrase for Apache server
I have Apache 2.50.0 with the mod_ssl enabled on an AIX 5.1 machine. I compiled openssl-0.9.7d with the gcc compiler. When I first installed the key, I wanted to create it with no passphrase, but it said I needed a minimum of 4 characters. When I now try to reset it with the command # /usr/local/ssl/bin/openssl rsa -in server.bak -out server.key Enter pass phrase for server.bak: 21202:error:28069065:lib(40):UI_set_result:result too small:ui_lib.c:847:You must type in 4 to 4095 characters Is there an option that is set somewhere in openssl that requires the minimum 4 characters that can be turned off to allow a null passphrase? Add -nodes = openssl -in keywithpass.pem -out keynopass.pem -nodes Oliver smime.p7s Description: S/MIME Cryptographic Signature
