From owner-freebsd-questions@FreeBSD.ORG  Thu Jul 13 14:40:57 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2562B16A51B
	for <freebsd-questions@freebsd.org>;
	Thu, 13 Jul 2006 14:40:57 +0000 (UTC)
	(envelope-from freebsd.ph@gmail.com)
Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.168])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3DBF543D7F
	for <freebsd-questions@freebsd.org>;
	Thu, 13 Jul 2006 14:40:46 +0000 (GMT)
	(envelope-from freebsd.ph@gmail.com)
Received: by ug-out-1314.google.com with SMTP id j40so305811ugd
	for <freebsd-questions@freebsd.org>;
	Thu, 13 Jul 2006 07:40:46 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references;
	b=bJFw8r9VLmYshxGvahO6IJJvroEdl73EM34M5UBJd5k2ajJZeEeiMssF0Fu84WtGuaowYpuLCvR1BMPVzvG1pj61dqzDt04nb8rVNLwddxNwXxq15tomHqmjcrrT+CEw3d+33ZRkjPnosa49xAc0mQzuqRCOCXmlYL0bKQHm604=
Received: by 10.78.156.6 with SMTP id d6mr670422hue;
	Thu, 13 Jul 2006 07:40:46 -0700 (PDT)
Received: by 10.78.141.18 with HTTP; Thu, 13 Jul 2006 07:40:45 -0700 (PDT)
Message-ID: <a25afc300607130740i3193909bmd0ca0eabd4effe45@mail.gmail.com>
Date: Thu, 13 Jul 2006 22:40:45 +0800
From: "jan gestre" <freebsd.ph@gmail.com>
To: "Chuck Swiger" <cswiger@mac.com>
In-Reply-To: <44B65784.9020309@mac.com>
MIME-Version: 1.0
References: <a25afc300607130706n54129229i53b9e5c62878d2e2@mail.gmail.com>
	<44B65784.9020309@mac.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: Liste FreeBSD <freebsd-questions@freebsd.org>
Subject: Re: getting rid of apache passphrase
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jul 2006 14:40:57 -0000

On 7/13/06, Chuck Swiger <cswiger@mac.com> wrote:
>
> jan gestre wrote:
> > just want to ask if getting rid of the apache passphrase poses a
> security
> > threat, i don't want the company i worked for calling me up everytime
> they
> > cant access the webserver because the server is asking for the
> passphrase
> > everytime the box restarts du to power failure.
>
> Presumably you're talking about an Apache server using SSL where the SSL
> key
> requires a password?  Requiring a human to enter the password is more
> secure,
> but if you want the system to reboot without manual intervention, you'll
> have
> to remove the password or put it into a script...
>
> yes, i'm talking about apache with ssl/tls encryption, is that passphrase
> going to be a security issue in the internet or locally at the machine
> level? if it's machine level, i have no problem getting rid of it coz nobody
> here knows anything about unix/bsd.
>