[arch-general] Lighttpd and passphrase protected SSL certificate
Sven-Hendrik Haase
sh at lutzhaase.com
Sun Jan 15 11:40:48 EST 2012
On 01/15/2012 05:38 PM, Audric Schiltknecht wrote:
> Le 15 janvier 2012 14:11, Sven-Hendrik Haase <sh at lutzhaase.com> a écrit :
>
>> Audric Schiltknecht <chemicalstorm at gmail.com> wrote:
>>
>>> Hi guys,
>>>
>>> I just have switched my webserver from debian to arch. However, I ran
>>> into
>>> some tricks with one of my sites which uses a passphrase protected SSL
>>> certificate. Indeed, because of the way lighttpd is currently started,
>>> it
>>> is not possible to enter the passphrase for such certificates.
>>> For the moment, I have to start lighttd without using its rc script,
>>> which
>>> saddens me a little.
>>>
>> Depends. How does upstream suggest it to be done?
>>
> Upstream says (http://redmine.lighttpd.net/projects/1/wiki/Docs:SSL) that
> the SSL password must be enter manually on each lighttpd start (or to
> remove the passwod from the key file, which I don't want to do :))
>
>
>> If upstream it should be entered during startup and our script doesn't
>> allow for that then a bug report is the way to go.
>>
> Ok, so I will fill a bug.
>
> Thanks !
If this was added to the rc.d file and you start the server at boot, it
would hang indefinitely, waiting for input. It should have a timeout in
that case. But what about if you start it in background? There is more
to this in order to make it sensible.
More information about the arch-general
mailing list