httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "William A. Rowe Jr." <>
Subject Re: Removing passwords from the conf file
Date Mon, 29 Nov 2010 19:15:36 GMT
On 11/20/2010 4:05 PM, Daniel Ruggeri wrote:
> In mod_ssl there is a very handy option of making an exec callout for SSLPassPhraseDialog
> rather than to put a password for your private key in the conf file. The obvious benefit
> here is that one can then design a solution to meet any arbitrary number of security
> challenges before allowing that password to be delivered.

The right way to solve this is an 'Include secrets.conf' where secrets.conf is 600
owned root/root.

> P.S.
> I am opposed to mod_ssl's check that the argument to SSLPassPhraseDialog exec:blah is
> file. This prevents calling an arbitrary executable with parameters. Thoughts?

Agreed, patch warmly welcomed.  Same with the actual keys and certs, which might
be fetched via a named pipe or similar.  -f is evil in these cases.

View raw message