[Gllug] logrotate
Simon Wilcox
essuu at ourshack.com
Mon Sep 3 16:45:01 UTC 2007
Steve Coast wrote:
> On 3 Sep 2007, at 16:19, Simon Wilcox wrote:
>> ssl - don't do that then. Seriously, if the box is compromised to that
>> extent you have bigger problems :-)
>>
>
> Compromised? What?
I meant that having a password on the certificate doesn't really help
much once the box has been compromised to the point where an attacker
has access to the certificate file. Once you get to that point you
probably have bigger problems to worry about.
I'm yet to be convinced that having a password on the certificate aids
security more than it hinders automated restarts.
Sorry I wasn't very clear earlier !
S.
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list