A further approach is to have another machine monitor the webserver from
inside a firewall or over a serial cable and on a reboot it will log in
over ssh and do the pass phrase thing...
Sean
Owen Boyle wrote:
>
> Dave wrote:
> > when I started the binary 'perlhttpdctl
> > startssl' (mod_perl is compiled in as well), I was prompted for my PEM pass
> > phrase which I entered and all is well, but what happens when I reboot this
> > server? I am not always physically at the machine when it is rebooted or
> > powered down/up and I was wondering if there was a way I could automate
> > this through /etc/init.d (rc startup scripts)?
>
> Another approach is to have a script that echoes the pass-phrase at boot
> (described in the above FAQ). Personally, I think that is a pointless
> exercise since the script needs to know the pass-phrase and if a hacker
> can get your certificate, he can get the script... Some people keep the
> script on a floppy which they insert manually at boot - in which case
> they might as well type in the pass-phrase.
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
