On Thu, Sep 14, 2000, Mindaugas Riauba wrote:
> Does Apache+mod_ssl needs stop/start to load new certificates or
> I am missing something here? Seems that usual SIGHUP/SIGUSR1 does
> not help.
>
> Apache 1.3.12, mod_ssl 2.6.6, FreeBSD 3.5, Apache compiled withouth DSOs.
Yes, you have to perform a full kill+restart, because mod_ssl has to cache and
preserve the certificates+keys over (normal and graceful) restarts (the reason
is simply because if a key is encrypted on restarts the TTY is already
detached, so mod_ssl would no longer have the possibility to ask for the
pass-phrase).
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]