[Cialug] SSL Passphrase + apache

[Nathan C. Smith]

If someone compromises your system they can steal the key, er that's not
quite what I mean.

You have to weigh the risk v. the convenience.  So far, I've chosen
convenience.  ;-)
Obviously you can disable httpd at init and start in later when you can
enter the pass phrase.



-----Original Message-----
From: Barry Von Ahsen [mailto:barry@vonahsen.com] 
Sent: Friday, March 25, 2005 3:30 PM
To: cialug@cialug.org
Subject: [Cialug] SSL Passphrase + apache



Is there any advantage to having a SSL passphrase?  I can't think of 
one, and I've found the disadvantage (on Debian, at least) that on 
reboot, apache will wait (>2 days) for the passphrase, and not complete 
the init on other processes.  On this particular server, I could ssh, 
and it would authenticate, but then show a message that "the init 
process has not completed" then exit.

-barry
_______________________________________________
Cialug mailing list
Cialug@cialug.org
http://cialug.org/mailman/listinfo/cialug