Re: Rebooting web server w/o having to type certificate passphrase?

Secure Home | Search | About

Lost Password?

General Computer Security

get this group's latest topics as an RSS feed

add this group's latest topics to your My MSN content

add this group's latest topics to your My Yahoo content

add this group's latest topics to your Google content

Subject	Author	Date
Re: Rebooting web server w/o having to type certificate passphrase?	Alan J Rosenthal	06-15-2007

Posted by Alan J Rosenthal on June 15, 2007, 1:02 pm

If you were Registered and logged in, you could reply and use other advanced thread options

>In case (1) the resultant cert is DSA and needs a password.

>It seems that (1) is more secure, but it requires the password to be typed.

>Is there a way to prevent the interactive password typing?

The only reason it's "more secure" is because it requires the password to
be typed. Any mechanism for getting around this requirement constitutes
lowering the security so as to be identical. I agree with lowering the
security in this way, and I recommend doing so in the standard way, by
using your method #2 (empty passphrase).

Similar Threads	Posted
Re: Rebooting web server w/o having to type certificate passphrase?	June 11, 2007, 2:58 am
Re: Rebooting web server w/o having to type certificate passphrase?	June 24, 2007, 5:28 am
Rebooting web server w/o having to type certificate passphrase?	June 11, 2007, 1:43 am
Sign e-mail with server certificate	February 22, 2005, 4:17 pm
SSL security with server certificate compromised	December 22, 2006, 7:06 am
Symbols vs letters as passphrase?	October 5, 2005, 12:19 pm
Howto setup a certificate authority and create a signed certificate using openssl on Debian sarge	March 16, 2005, 10:39 am
Re: Some kind of dictionary type attack?	January 9, 2008, 6:22 am
Sending CMS SignedData via http - which Content-Type??	March 22, 2005, 8:44 am
ICMP Type 8 Echo Request packet security concerns	October 11, 2005, 5:39 am

The site map in XML format XML site map