Incorrect, one concerned with the security of their keys and the confidentiality of the data that is encrypted with it should protect their keys; even going to the extent of protecting said keys using an HSM may be necessary to meet their liability risk management needs.
As to the technical question, yes it is possible to decrypt the key and store it with no pass phrase; if I remember correctly you would use the openssl enc command. Ryan -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Saturday, October 13, 2001 10:49 AM To: [EMAIL PROTECTED] Subject: Re: Pass Phrase Nope.. This is why usually one wants to not have a passphrase tied to a https server which needs to be entered on each restart of the ssled server.. On Sat, Oct 13, 2001 at 12:11:34PM -0400, George Ascione wrote: > Hello; > > We assigned a pass phrase for a certificate key file by accident and now > need to enter the password to start this server. To avoid trashing this > cert is there any way to remove the pass phrase from the key and > de-crypt it? > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
