Multiple Virtual Host (was SSL and Apache)

Alex Dean alex at crackpot.org
Thu Mar 9 14:52:41 MST 2006


On Mar 9, 2006, at 2:47 PM, Craig White wrote:

> On Thu, 2006-03-09 at 14:37 -0700, Carl Parrish wrote:
>> Mike Garfias wrote:
>>
>>> You need a seperate cert file listed for each virtual host.
>>> there needs to be a reference in each <virtualHost> block.
>>>
>>> Also, its much easier to deal with, if you strip the passwords  
>>> from the certs.
>>>
>>> My take was that if the box would have to get owned to get ahold  
>>> of the cert
>>> anyway.  If the box is owned, you might as well give up.
>>>
>>>
>>>
>> Yeap I have certs for each vertial host and a vertial host block for
>> each (or at least the two I'm trying so far) . To strip the passwd  
>> do I
>> need to get the certs reissued from the CA?  Perhaps there is a  
>> way for
>> me to strip them from my box.
> ----
> No - you can do it yourself, I've got it down somewhere but am tied up
> at the moment. If no one else comes up with the juju - I can  
> provide it
> later.


Like I said, haven't done passphrases, but I found this earlier  
today.  YMMV...  There's probably stuff on this in the OpenSSL man  
pages somewhere, too.

> http://danmacs.blogspot.com/2005/10/apache-2-and-modssl.html
>
> you can remove the passphrase by using the following command
>
> openssl rsa -in file1.key -out file2.key
>
> where file1.key is the key with passphrase and file2.key is the  
> same key with the encryption removed. You will be asked for the  
> passphrase for file1.key when you run this so if you don't remember  
> what it is you are SOOL.

alex
.





More information about the PLUG-discuss mailing list