From owner-freebsd-questions@FreeBSD.ORG Thu Jul 13 15:05:10 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EAEB816A4DF for ; Thu, 13 Jul 2006 15:05:10 +0000 (UTC) (envelope-from jerrymc@clunix.cl.msu.edu) Received: from clunix.cl.msu.edu (clunix.cl.msu.edu [35.9.2.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8860143D45 for ; Thu, 13 Jul 2006 15:05:10 +0000 (GMT) (envelope-from jerrymc@clunix.cl.msu.edu) Received: from clunix.cl.msu.edu (localhost [127.0.0.1]) by clunix.cl.msu.edu (8.13.6+Sun/8.13.6) with ESMTP id k6DF59G9017918; Thu, 13 Jul 2006 11:05:09 -0400 (EDT) Received: (from jerrymc@localhost) by clunix.cl.msu.edu (8.13.6+Sun/8.13.6/Submit) id k6DF591r017917; Thu, 13 Jul 2006 11:05:09 -0400 (EDT) From: Jerry McAllister Message-Id: <200607131505.k6DF591r017917@clunix.cl.msu.edu> To: freebsd.ph@gmail.com (jan gestre) Date: Thu, 13 Jul 2006 11:05:09 -0400 (EDT) In-Reply-To: X-Mailer: ELM [version 2.5 PL7] MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: Liste FreeBSD Subject: Re: getting rid of apache passphrase X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Jul 2006 15:05:11 -0000 > > hello people, > > just want to ask if getting rid of the apache passphrase poses a security > threat, i don't want the company i worked for calling me up everytime they > cant access the webserver because the server is asking for the passphrase > everytime the box restarts du to power failure. Depends on how good your control of access to the server is. In my case for example, I control physical access to the machine. That could be, and has been a problem when I was away and power went out, to get things back up, so I got rid of the passphrase. Now, as long as the fsck-s clear at boot time, the server makes it all the way back up without intervention. But, if you have a lot of people running around, even if ignorant, then you might want to think again about eliminating it. It is less likely to be a concern for remote access, but could come up, especially if someone gets root to your server. Of course, then all bets are off anyway. ////jerry > > TIA > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"