[Gllug] logrotate

Simon Wilcox essuu at ourshack.com
Mon Sep 3 16:45:01 UTC 2007


Steve Coast wrote:
> On 3 Sep 2007, at 16:19, Simon Wilcox wrote:
>> ssl - don't do that then. Seriously, if the box is compromised to that
>> extent you have bigger problems :-)
>>
> 
> Compromised? What?

I meant that having a password on the certificate doesn't really help 
much once the box has been compromised to the point where an attacker 
has access to the certificate file. Once you get to that point you 
probably have bigger problems to worry about.

I'm yet to be convinced that having a password on the certificate aids 
security more than it hinders automated restarts.

Sorry I wasn't very clear earlier !

S.
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug




More information about the GLLUG mailing list