[Cialug] SSL Passphrase + apache

Barry Von Ahsen cialug@cialug.org
Fri, 25 Mar 2005 16:50:03 -0600


That's about what I figured

I've got it disabled at the moment, and I'll continue to weigh the risk

thanks,
-barry



Nathan C. Smith wrote:
> If someone compromises your system they can steal the key, er that's not
> quite what I mean.
> 
> You have to weigh the risk v. the convenience.  So far, I've chosen
> convenience.  ;-)
> Obviously you can disable httpd at init and start in later when you can
> enter the pass phrase.
> 
> 
> 
> -----Original Message-----
> From: Barry Von Ahsen [mailto:barry@vonahsen.com] 
> Sent: Friday, March 25, 2005 3:30 PM
> To: cialug@cialug.org
> Subject: [Cialug] SSL Passphrase + apache
> 
> 
> 
> Is there any advantage to having a SSL passphrase?  I can't think of 
> one, and I've found the disadvantage (on Debian, at least) that on 
> reboot, apache will wait (>2 days) for the passphrase, and not complete 
> the init on other processes.  On this particular server, I could ssh, 
> and it would authenticate, but then show a message that "the init 
> process has not completed" then exit.
> 
> -barry
> _______________________________________________
> Cialug mailing list
> Cialug@cialug.org
> http://cialug.org/mailman/listinfo/cialug
> _______________________________________________
> Cialug mailing list
> Cialug@cialug.org
> http://cialug.org/mailman/listinfo/cialug