Chris Schuld's Blog

personal musings on the composition of software

Written By: Chris Schuld Wednesday, August 20th, 2008

Every once in a while I run across an SSL Cert with an included password. Although the security is great automating an environment or an Apache restart with required interaction is problematic.

Here is an example of the interaction with a password included SSL Cert:

[root@w2 conf.d]# /etc/init.d/httpd restart
Stopping httpd:                                            [  OK  ]
Starting httpd: Apache/2.2.8 mod_ssl/2.2.8 (Pass Phrase Dialog)
Some of your private key files are encrypted for security reasons.
In order to read them you have to provide the pass phrases.
 
Server chrisschuld.com:443 (RSA)
Enter pass phrase:
 
OK: Pass Phrase Dialog successful.

And here is how you remove the password:

[root@w2 conf]# openssl rsa -in chrisschuld.com.key -out chrisschuld.com.key.nopass
Categories: Linux

6 Responses to " Removing the Password on an Apache SSL Certificate "

  1. tom3k says:

    thanks!

    was looking for the one step that took care of this… everywhere else lists it in the whole ssl cert creation process…

    ciao!

  2. Michael says:

    Hi, thanks. i have been looking for this solution for a long time…

  3. Brian says:

    Thanks so much for your help. This is an answer I too have been looking for some time. Much Appreciated!

  4. David says:

    Exactly what I was looking for. Thanks

    You then need to change /etc/httpd/conf.d/ssl.conf so that it uses the new key

  5. Joshua says:

    Awesome. Thank you very much. The simple answer to a simple problem… without four thousand other things. More 1 paragraph blog posts!

  6. Fredrick says:

    Thanks a lot.
    Finally the server restarts on its own and doesn’t need me to manually connect.

Leave a Reply

About Chris

Chris Schuld

Thank you for visiting my website. I use this site for a myriad of things: maintaining software I have open sourced, connecting with my readers and friends and documenting all of this little things "I wished I would have written down." You can read more about me or contact me.


thanks for visiting... happy coding

Recent Comments