Re: Don't prompt for SSL Pass Phrase

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: Don't prompt for SSL Pass Phrase
From: "Jon D. Slater" <Jon.Slater@xxxxxxxxxxxxxxx>
Date: Fri, 11 Nov 2005 13:06:57 -0700
In-reply-to: <1131736832.20572.5.camel@xxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <https://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <4374D19D.2040003@xxxxxxxxxxxxxxx> <4374D3A9.1000903@xxxxxxxxxxxx> <4374D879.1080905@xxxxxxxxxxxxxxx> <1131736832.20572.5.camel@xxxxxxxxxxxxxxxxxxxxx>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mozilla Thunderbird 1.0.7 (Windows/20050923)

Alexander Dalloz wrote:

Am Fr, den 11.11.2005 schrieb Jon D. Slater um 18:44:

http://www.redhat.com/archives/fedora-list/2005-November/msg01104.html

Paul.

Thanks Paul,

Seems straight-forward enough, but it didn't work...

I decrypted according to the instructions, then (to test) restarted 
httpd and was again prompted for a "pass-phrase".

What did I miss?  (Not that there's a lot to miss in 2 lines of 
instructions.)

Jon


I would have been good if you had posted what exactly you did. From what
you wrote I assume you chose the alternate where one removes the
passphrase from the RSA key. So, given your passphrase protected is

/etc/httpd/conf/ssl.key/server.key

you run following:

1) cd /etc/httpd/conf/ssl.key
2) mv server.key server-rsa.key
3) openssl rsa -in server-rsa.key > server.key
4) chmod 400 server.key
5) chown root:root server.key
6) service httpd restart

Alexander

That's exactly what I did... (Just to remove any doubt, I actually cut-n-pasted your commands.)

After step 6 I get:

Stopping httpd: [ OK ]
Starting httpd: Apache/2.0.54 mod_ssl/2.0.54 (Pass Phrase Dialog)
Some of your private key files are encrypted for security reasons.
In order to read them you have to provide the pass phrases.

Server www.blahblahblah.com:443 (RSA)
Enter pass phrase:

OK: Pass Phrase Dialog successful.
[ OK ]

Follow-Ups:
- Re: Don't prompt for SSL Pass Phrase
  - From: Alexander Dalloz

References:
- Don't prompt for SSL Pass Phrase
  - From: Jon D. Slater
- Re: Don't prompt for SSL Pass Phrase
  - From: Paul Howarth
- Re: Don't prompt for SSL Pass Phrase
  - From: Jon D. Slater
- Re: Don't prompt for SSL Pass Phrase
  - From: Alexander Dalloz

Prev by Date: Spurious mouse and keyboard craziness with kernel 2.6.13-1.1532 and 2.6.14-1.1637
Next by Date: Ethernet problem
Previous by thread: Re: Don't prompt for SSL Pass Phrase
Next by thread: Re: Don't prompt for SSL Pass Phrase
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux