Date: Thu, 13 Jul 2006 22:40:45 +0800 From: "jan gestre" <freebsd.ph@gmail.com> To: "Chuck Swiger" <cswiger@mac.com> Cc: Liste FreeBSD <freebsd-questions@freebsd.org> Subject: Re: getting rid of apache passphrase Message-ID: <a25afc300607130740i3193909bmd0ca0eabd4effe45@mail.gmail.com> In-Reply-To: <44B65784.9020309@mac.com> References: <a25afc300607130706n54129229i53b9e5c62878d2e2@mail.gmail.com> <44B65784.9020309@mac.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 7/13/06, Chuck Swiger <cswiger@mac.com> wrote: > > jan gestre wrote: > > just want to ask if getting rid of the apache passphrase poses a > security > > threat, i don't want the company i worked for calling me up everytime > they > > cant access the webserver because the server is asking for the > passphrase > > everytime the box restarts du to power failure. > > Presumably you're talking about an Apache server using SSL where the SSL > key > requires a password? Requiring a human to enter the password is more > secure, > but if you want the system to reboot without manual intervention, you'll > have > to remove the password or put it into a script... > > yes, i'm talking about apache with ssl/tls encryption, is that passphrase > going to be a security issue in the internet or locally at the machine > level? if it's machine level, i have no problem getting rid of it coz nobody > here knows anything about unix/bsd. >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?a25afc300607130740i3193909bmd0ca0eabd4effe45>