Don't prompt for SSL Pass Phrase
Alexander Dalloz
ad+lists at uni-x.org
Fri Nov 11 20:41:08 UTC 2005
Am Fr, den 11.11.2005 schrieb Jon D. Slater um 21:06:
> Alexander Dalloz wrote:
> > passphrase from the RSA key. So, given your passphrase protected is
> >
> > /etc/httpd/conf/ssl.key/server.key
> >
> > you run following:
> >
> > 1) cd /etc/httpd/conf/ssl.key
> > 2) mv server.key server-rsa.key
> > 3) openssl rsa -in server-rsa.key > server.key
> > 4) chmod 400 server.key
> > 5) chown root:root server.key
> > 6) service httpd restart
> >
> > Alexander
> >
>
> That's exactly what I did... (Just to remove any doubt, I actually
> cut-n-pasted your commands.)
>
> After step 6 I get:
>
> > Stopping httpd: [ OK ]
> > Starting httpd: Apache/2.0.54 mod_ssl/2.0.54 (Pass Phrase Dialog)
> > Some of your private key files are encrypted for security reasons.
> > In order to read them you have to provide the pass phrases.
> >
> > Server www.blahblahblah.com:443 (RSA)
> > Enter pass phrase:
> >
> > OK: Pass Phrase Dialog successful.
> > [ OK ]
I forgot to annotate that step 3) requires that you enter the passphrase
(you are asked for it).
Are you sure you handle the correct key file? Please compare your
Apache2 configuration file. The default config file is
/etc/httpd/conf.d/ssl.conf.
Alexander
--
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp
Serendipity 21:23:01 up 13 days, 19:23, load average: 0.22, 0.15, 0.14
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20051111/054c05ef/attachment-0001.sig>
More information about the fedora-list
mailing list