On Mar 9, 2006, at 2:47 PM, Craig White wrote:
> On Thu, 2006-03-09 at 14:37 -0700, Carl Parrish wrote:
>> Mike Garfias wrote:
>>
>>> You need a seperate cert file listed for each virtual host.
>>> there needs to be a reference in each <virtualHost> block.
>>>
>>> Also, its much easier to deal with, if you strip the passwords
>>> from the certs.
>>>
>>> My take was that if the box would have to get owned to get ahold
>>> of the cert
>>> anyway. If the box is owned, you might as well give up.
>>>
>>>
>>>
>> Yeap I have certs for each vertial host and a vertial host block for
>> each (or at least the two I'm trying so far) . To strip the passwd
>> do I
>> need to get the certs reissued from the CA? Perhaps there is a
>> way for
>> me to strip them from my box.
> ----
> No - you can do it yourself, I've got it down somewhere but am tied up
> at the moment. If no one else comes up with the juju - I can
> provide it
> later.
Like I said, haven't done passphrases, but I found this earlier
today. YMMV... There's probably stuff on this in the OpenSSL man
pages somewhere, too.
> http://danmacs.blogspot.com/2005/10/apache-2-and-modssl.html
>
> you can remove the passphrase by using the following command
>
> openssl rsa -in file1.key -out file2.key
>
> where file1.key is the key with passphrase and file2.key is the
> same key with the encryption removed. You will be asked for the
> passphrase for file1.key when you run this so if you don't remember
> what it is you are SOOL.
alex
.
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
(text/plain)