On Mar 9, 2006, at 2:47 PM, Craig White wrote: > On Thu, 2006-03-09 at 14:37 -0700, Carl Parrish wrote: >> Mike Garfias wrote: >> >>> You need a seperate cert file listed for each virtual host. >>> there needs to be a reference in each block. >>> >>> Also, its much easier to deal with, if you strip the passwords >>> from the certs. >>> >>> My take was that if the box would have to get owned to get ahold >>> of the cert >>> anyway. If the box is owned, you might as well give up. >>> >>> >>> >> Yeap I have certs for each vertial host and a vertial host block for >> each (or at least the two I'm trying so far) . To strip the passwd >> do I >> need to get the certs reissued from the CA? Perhaps there is a >> way for >> me to strip them from my box. > ---- > No - you can do it yourself, I've got it down somewhere but am tied up > at the moment. If no one else comes up with the juju - I can > provide it > later. Like I said, haven't done passphrases, but I found this earlier today. YMMV... There's probably stuff on this in the OpenSSL man pages somewhere, too. > http://danmacs.blogspot.com/2005/10/apache-2-and-modssl.html > > you can remove the passphrase by using the following command > > openssl rsa -in file1.key -out file2.key > > where file1.key is the key with passphrase and file2.key is the > same key with the encryption removed. You will be asked for the > passphrase for file1.key when you run this so if you don't remember > what it is you are SOOL. alex . --------------------------------------------------- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change you mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss