Re: tls private key

2010-03-25 Thread Alexander Samad
On Fri, Mar 26, 2010 at 3:18 PM, Howard Chu wrote: > Chris Jacobs wrote: >> >> There's one sure fire way to find out... >> >> Start it up with a syncrepl, then move the private key, and see if it >> syncs fine both ways. >> >> Wait a day or so, and make a change and see if that synced. >> >> If I

Re: tls private key

2010-03-25 Thread Howard Chu
| fax: 206.441.9661 email: chris.jac...@apollogrp.edu - Original Message - From: openldap-technical-bounces+chris.jacobs=apollogrp@openldap.org To: openldap-technical@openldap.org Sent: Thu Mar 25 18:44:47 2010 Subject: Re: tls private key HI On Fri, Mar 26, 2010 at 12:09 PM,

Re: tls private key

2010-03-25 Thread Chris Jacobs
mail: chris.jac...@apollogrp.edu - Original Message - From: openldap-technical-bounces+chris.jacobs=apollogrp@openldap.org To: openldap-technical@openldap.org Sent: Thu Mar 25 18:44:47 2010 Subject: Re: tls private key HI On Fri, Mar 26, 2010 at 12:09 PM, Tyler Gates wrote: > Alex,

Re: tls private key

2010-03-25 Thread Alexander Samad
HI On Fri, Mar 26, 2010 at 12:09 PM, Tyler Gates wrote: > Alex, >  encrypting the private key really isn't necessary and I highly doubt it > would work for your application nor be worth the hassel. Securing via file > permisssions as mentioned previously is really the best way to tackle this. > T

Re: tls private key

2010-03-25 Thread Tyler Gates
lto:openldap-technical-bounces +chris.jacobs=apollogrp@openldap.org] On Behalf Of Alexander Samad Sent: Monday, March 22, 2010 11:21 PM To: openldap-technical@openldap.org Subject: Fwd: tls private key Hi THought I would re ask, do certificates only get read at start up, I store my cert

Re: tls private key

2010-03-25 Thread Alexander Samad
m: openldap-technical-bounces+chris.jacobs=apollogrp@openldap.org > [mailto:openldap-technical-bounces+chris.jacobs=apollogrp@openldap.org] > On Behalf Of Alexander Samad > Sent: Monday, March 22, 2010 11:21 PM > To: openldap-technical@openldap.org > Subject: Fwd: tls p

RE: tls private key

2010-03-23 Thread Chris Jacobs
es+chris.jacobs=apollogrp@openldap.org] On Behalf Of Alexander Samad Sent: Monday, March 22, 2010 11:21 PM To: openldap-technical@openldap.org Subject: Fwd: tls private key Hi THought I would re ask, do certificates only get read at start up, I store my cert's with password, can i unp

Fwd: tls private key

2010-03-23 Thread Alexander Samad
arded message -- From: Alex Samad Date: Sat, Jan 16, 2010 at 6:03 PM Subject: tls private key To: openldap-technical@openldap.org Hi I am setting up my sync repl to use certificates, my problem is I don't want to leave my private key for the server un encrypted. the file poi

tls private key

2010-01-15 Thread Alex Samad
Hi I am setting up my sync repl to use certificates, my problem is I don't want to leave my private key for the server un encrypted. the file pointed to by TLSCertificateKeyFile is is just read at slapd load up time, ie can i unencrypt the file start slapd and then remove the un encrypted file