[Date Prev][Date Next] [Chronological] [Thread] [Top]

Fwd: tls private key



Hi

THought I would re ask, do certificates only get read at start up, I
store my cert's with password, can i unpassword protect and then start
slapd and then remove the unpassworded cert private file ?

will this be okay until such a time as slapd get restart ?

Alex


---------- Forwarded message ----------
From: Alex Samad <alex@samad.com.au>
Date: Sat, Jan 16, 2010 at 6:03 PM
Subject: tls private key
To: openldap-technical@openldap.org


Hi


I am setting up my sync repl to use certificates, my problem is I don't
want to leave my private key for the server un encrypted.

the file pointed to by TLSCertificateKeyFile is is just read at slapd
load up time, ie can i unencrypt  the file start slapd and then remove
the un encrypted file ?

Alex


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAktRZMcACgkQkZz88chpJ2MJYQCeIJ5FtSLGRpQJpr1Gco0NSjr8
VlYAnRmvR+YgJTplXoiX9Xsp+JgQH5VH
=iN8i
-----END PGP SIGNATURE-----

Attachment: signature.asc
Description: PGP signature