Re: Help configuring Apache2 + SSL + namebased vhosts

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Wed, Mar 4, 2009 at 9:59 AM, Steffen Tronstad <sttr@xxxxxxxxxxxxxx> wrote:
> Ah, this helped alot.

Excellent, glad you were able to solve the problem.

> Now I have to find a way to disable entering my passphrase "every time"
> (once a year) the server reboots.

There's info about this in the apache docs about this:
http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#removepassphrase
It comes down to three options: use a private key without a
passphrase, store your passphrase on disk, or manually enter your
passphrase when needed. Obviously the first two are security risks,
but if you have strong root protection and make them only readable by
root, then it may be an option. One way to look at it is that if there
is a passphrase, it needs to be stored somewhere and communicated to
the server. That means either in a file, or in your head.

-Brian
-- 
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx


[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux