Richard,
> Out of curiosity, why would it be important to make sure the RSA key
> is password-protected here:
>
> ssl> * Generate the RSA keys into a password-protected file,
> ssl> using some file as random data seed.
> ssl> Make sure you remember the "PEM pass phrase" used to
> ssl> protect RSA keys.
> ssl> openssl genrsa -des3 -rand /bsd.ORIG -out www.xxxxx.key 1024
>
> ... when you're gonna generate an unprotected variant later?
>
> ssl> * Generate the decrypted version of the RSA private key:
> ssl> openssl rsa -in www.xxxxx.key -out www.xxxxx.key-unenc
You're right, it isn't essential. I took the text from some notes
that we had lying around for Andrew's benefit. (Maybe it's a good
excercise in knowing how to pass-protect it anyway :-} )
Regards, -T.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
