Solved

Apache w/ Mod_SSL and password protected keys.

Posted on 2004-04-05
2
330 Views
Last Modified: 2010-03-04
I recently renewed my SSL keys and was prompted to put a password on them when generating the certificate request (I think it was at that point).

Anyway, every time I start up my apache, it makes me put in that password before apache will start up.

eg:

     # /usr/local/apache/bin/apachectl startssl
     Apache/1.3.29 mod_ssl/2.8.16 (Pass Phrase Dialog)
     Some of your private key files are encrypted for security reasons.
     In order to read them you have to provide us with the pass phrases.

     Server xxx.xxx.com:443 (RSA)

This is a problem, since when I reboot my server, apache will not start up until I go in via ssh and manually restart it and manually type in the password.

Is there a way to automate this process so that when I reboot my server, my apache WILL automatically start up without my intervention (typing in that password)?

Here's the setup of my apache from server-status:  
Apache/1.3.29 (Unix) PHP/4.3.4 mod_ssl/2.8.16 OpenSSL/0.9.7c
I'm on FreeBSD 4.9 STABLE

Thanks.
0
Comment
Question by:jcoman777
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 1

Author Comment

by:jcoman777
ID: 10777330
To get rid of the pass-phrase dialog at Apache startup time:
 
 Remove the encryption from the RSA private key (while preserving the original file):
   
 $ cp server.domain.tld.key server.domain.tld.key.orig
 $ openssl rsa -in server.domain.tld.key.orig -out server.domain.tld.key
 Enter PEM pass phrase: YOUR_PASSWORD_HERE
 
 Make sure the server.key file is now only readable by root:  
 
 $ chmod 400 server.domain.tld.key  
0
 
LVL 2

Accepted Solution

by:
Lunchy earned 0 total points
ID: 10778845
Closed, 250 points refunded.
Lunchy
Friendly Neighbourhood Community Support Admin
0

Featured Post

Resolve Critical IT Incidents Fast

If your data, services or processes become compromised, your organization can suffer damage in just minutes and how fast you communicate during a major IT incident is everything. Learn how to immediately identify incidents & best practices to resolve them quickly and effectively.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In my time as an SEO for the last 2 years and in the questions I have assisted with on here I have always seen the need to redirect from non-www urls to their www versions. For instance redirecting http://domain.com (http://domain.com) to http…
Hi, in this article I'm going to teach you how to run your own site, and how to let people in (without IP). I'll talk about and explain each step... :) By the way, everything in this Tutorial is completely free and legal. This article is for …
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question