James Smallacombe <[EMAIL PROTECTED]> wrote:
>
> I just got my first cert from Thawte and got everything up and running
> fine...except I just realized something kind of disturbing. I had
> specified a passcode when creating my .crt file, and now it needs that
> code to start the server.
If you got it from Thawte, you shold look at the support site:
>From https://www.thawte.com/faq/apachessl.html#nopass
How do I eliminate the pass phrase requirement?
You can create an unencrypted copy of the key as follows:
ssleay rsa -in file1.key -out file2.key
Now file2.key will contain an unencrypted copy of the key.
If you point your server at this it will
not prompt you for a pass phrase. HOWEVER, if anyone gets
this key they will be able to
impersonate you on the net. PLEASE make sure that the
permissions on that file are such that
only root or the web server user can read it (preferably
get your web server to start as root but run
as another server, and have the key readable only by root).
And, I'm sure, it is in the SSLeay FAQ too...
--
read you later - Holger Reif
------------------------------------ Signaturprojekt Deutsche Einheit
TU Ilmenau - Informatik - Telematik (Verdamp lang her)
[EMAIL PROTECTED] Alt wie ein Baum werden, um ueber
Remus.PrakInf.TU-Ilmenau.DE/Reif/ alle 7 Bruecken gehen zu koennen
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
