httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Mark H. Wood" <mw...@IUPUI.Edu>
Subject Re: [users@httpd] apachectl startssl --need to start without entering password
Date Mon, 15 Aug 2005 13:52:27 GMT
Hash: SHA1

On Sun, 14 Aug 2005, James, Denise wrote:
> Please point me to where I can find documentation on starting apache
> with ssl and NOT having to enter the password.  I am new to managing
> this web server and was recently asked to setup a new certificate which
> expired.
> I did that, but now whenever apache is restarted, or the server itself
> is taken offline, at boot time the password is required.  I didn't have
> this problem until I added the new certificate.

The usual way is to remove the password from the private key.  For
example (from OpenSSL's 'man rsa'):

  openssl rsa -in key.pem -out keyout.pem

Do something similar for a DSA key, using the 'openssl dsa' command
instead.  You'll be asked for the input key's passphrase if it has one.
If you don't specify a cipher then the output key won't have a passphrase.
Instruct Apache to use the output key instead of the input key and the SSL
library should no longer prompt for a passphrase, since it won't need one
to decrypt the private key.

- -- 
Mark H. Wood, Lead System Programmer   mwood@IUPUI.Edu
Open-source executable:  $0.00.  Source:  $0.00  Control:  priceless!

Version: GnuPG v1.4.2 (GNU/Linux)
Comment: pgpenvelope 2.10.2 -


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message