|
Home > Archive > Web Servers on Unix and Linux > March 2006 > pass phrase on startup
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
pass phrase on startup
|
|
| Oliver Block 2006-03-09, 5:52 pm |
| Hello everybody,
when you compile an httpd with ssl support (for https) you need to type
in a pass phrase after you installed and configured it properly.
Which is the best and safest way to automate that, if there's any?
bye,
Oliver
| |
| Paul Rubin 2006-03-09, 5:52 pm |
| "Oliver Block" <oliver.block@epost.de> writes:
> when you compile an httpd with ssl support (for https) you need to type
> in a pass phrase after you installed and configured it properly.
>
> Which is the best and safest way to automate that, if there's any?
There really is none. Seriously paranoid installations use special
hardware to generate and encapsulate the keys, so humans never touch
them. NCipher is one vendor who I've dealt with for that kind of
equipment.
| |
| Alexander Dalloz 2006-03-09, 8:47 pm |
| On Thu, 09 Mar 2006 12:07:07 -0800 Oliver Block wrote:
> when you compile an httpd with ssl support (for https) you need to type
> in a pass phrase after you installed and configured it properly.
>
> Which is the best and safest way to automate that, if there's any?
> Oliver
http://httpd.apache.org/docs/2.0/ss...emovepassphrase
Alexander
--
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp
Serendipity 01:41:35 up 14 days, 3:30, load average: 0.29, 0.16, 0.19
| |
| Oliver Block 2006-03-12, 7:46 am |
| Thanks Alexander,
I'll read that carefully on monday,
Greetings from Bad Salzuflen,
Oliver
| |
| Oliver Block 2006-03-12, 7:46 am |
| Hi Paul,
that sounds interesting. I mean at least if you are responsible for not
only one or few servers.
bye,
Oliver
|
|
|
|
|