2008/9/9 Travis <[EMAIL PROTECTED]>: > Perhaps they should not, but apache does. Dovecot has a config file > entry with the password to the key to allow use of keys with > passwords, which is helpful because:
Apache's default behaviour to prompt is less than ideal, but can be configured to do otherwise. > It turns out that my software (tinyca2) as well as the normal > openssl genrsa -des3 -rand /etc/hosts -out smtpd.key 1024 > (suggested here: https://help.ubuntu.com/community/Postfix) > both prompt for passwords with which to encrypt the key. As Wietse mentions, this guide is perverse. This smells like cargo-culting, there's no need to create the key with a passphrase then strip it a couple of steps later. This will also do exactly what you want. (I've also fixed that bit of the documentation) openssl genrsa 1024 > unencrypted.key
