On Tue, Mar 9, 2010 at 9:30 PM, Ola Lundqvist <o...@debian.org> wrote: > Hi Mathieu > > There are two things that I'm uncertain about. > > 1) Why do your apache ask for a passphrase?
Because I am paranoid and I setup SSL so that each time apache restart, it request the passphrase. See: http://httpd.apache.org/docs/2.0/ssl/ssl_faq.html#removepassphrase > 2) The second thing is not so much a question, but rather a statement that > it is very hard to determine that the server actually waits for a pass > phrase... > To solve that quite a lot of custom code needs to be written... And it could > change over time and it also depends on the restarted software. I saw that the script redirect everything to null. I am not sure this always the good solution (eg. this case). > Is it ok if I lower the severity to wishlist, as I really think it is of that > form? ok. -- Mathieu -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
