Don't prompt for SSL Pass Phrase
Alexander Dalloz
ad+lists at uni-x.org
Fri Nov 11 19:20:32 UTC 2005
Am Fr, den 11.11.2005 schrieb Jon D. Slater um 18:44:
> > http://www.redhat.com/archives/fedora-list/2005-November/msg01104.html
> >
> > Paul.
> Thanks Paul,
>
> Seems straight-forward enough, but it didn't work...
>
> I decrypted according to the instructions, then (to test) restarted
> httpd and was again prompted for a "pass-phrase".
>
> What did I miss? (Not that there's a lot to miss in 2 lines of
> instructions.)
>
> Jon
I would have been good if you had posted what exactly you did. From what
you wrote I assume you chose the alternate where one removes the
passphrase from the RSA key. So, given your passphrase protected is
/etc/httpd/conf/ssl.key/server.key
you run following:
1) cd /etc/httpd/conf/ssl.key
2) mv server.key server-rsa.key
3) openssl rsa -in server-rsa.key > server.key
4) chmod 400 server.key
5) chown root:root server.key
6) service httpd restart
Alexander
--
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp
Serendipity 20:15:08 up 13 days, 18:15, load average: 0.29, 0.25, 0.18
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20051111/7d86dcc3/attachment-0001.sig>
More information about the fedora-list
mailing list