Date: Thu, 13 Jul 2006 23:09:19 +0800 From: "jan gestre" <freebsd.ph@gmail.com> To: "Jerry McAllister" <jerrymc@clunix.cl.msu.edu> Cc: Liste FreeBSD <freebsd-questions@freebsd.org> Subject: Re: getting rid of apache passphrase Message-ID: <a25afc300607130809h4c8f3846j7336d0954b54410b@mail.gmail.com> In-Reply-To: <200607131505.k6DF591r017917@clunix.cl.msu.edu> References: <a25afc300607130706n54129229i53b9e5c62878d2e2@mail.gmail.com> <200607131505.k6DF591r017917@clunix.cl.msu.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On 7/13/06, Jerry McAllister <jerrymc@clunix.cl.msu.edu> wrote: > > > > > hello people, > > > > just want to ask if getting rid of the apache passphrase poses a > security > > threat, i don't want the company i worked for calling me up everytime > they > > cant access the webserver because the server is asking for the > passphrase > > everytime the box restarts du to power failure. > > Depends on how good your control of access to the server is. > In my case for example, I control physical access to the machine. > That could be, and has been a problem when I was away and power > went out, to get things back up, so I got rid of the passphrase. > Now, as long as the fsck-s clear at boot time, the server makes > it all the way back up without intervention. > > But, if you have a lot of people running around, even if ignorant, > then you might want to think again about eliminating it. > > It is less likely to be a concern for remote access, but could come > up, especially if someone gets root to your server. Of course, then > all bets are off anyway. > > yeah there are lots of ignorant people here in our organization :D, that > is why all my nix servers are headless since we don't have room to secure > them physically. thanks for your all your opinions :) >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?a25afc300607130809h4c8f3846j7336d0954b54410b>