[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Solution: Passphrase on private key w/ shttpd

Subject: [cobalt-users] Solution: Passphrase on private key w/ shttpd
From: WebTwo Support <web2support@xxxxxxxxxxxxx>
Date: Tue May 16 13:38:38 2000

Thanks to Susan Carson for the tip on removing the passphrase from aprivate key.

However, by researching the Apache documentation, I found a way to have thehttpd automatically get the passphrase and I thought I would share it withthe group, in case anyone else runs into this problem.

If you edit the httpd.conf for the secure server (/etc/shttpd/conf), youwill find a line that reads:

SSLPassPhraseDialog  builtin

Simply change that line to execute a script that will output thePassPhrase, like the following:


SSLPassPhraseDialog   exec:/etc/shttpd/conf/home/printpassphrase

The script itself can be as easy as:
#!/bin/sh
echo "my passphrase here"

But I used a compiled C program with some checking and encryption on thekey so that an intruder could not run "strings" or just execute the programto get the passphrase. Once I did this and kickstarted the secure webserver, everything works fine.

Hope this helps, and thanks again to Susan for the tip on removing thepassphrase. I filed that away as a good tip for future use!




Regards,
Chris
WebTwo Support Team
===============================
Visit http://www.firstdomain.net
Real-Time Domain Registration Service
As low as $10/year including ALL fees
ISPs: Join our International Affiliate Program!
===============================

Prev by Date: RE: [cobalt-users] QUBE 2 Security issue with public page.....
Next by Date: [cobalt-users] I seem not to find a way to restart Apache on a RaQ3
Previous by thread: RE: [cobalt-users] Telnet Problem
Next by thread: [cobalt-users] I seem not to find a way to restart Apache on a RaQ3

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index