home | list info | list archive | date index | thread index

Re: [OCLUG-Tech] wget passphrase

On Wed, Mar 31, 2010 at 14:55:04 -0400, piper.guy1 wrote:
> On Wed, Mar 31, 2010 at 2:35 PM, Joe Burpee <jeb [ at ] burkby [ dot ] com> wrote:
>> On Wed, Mar 31, 2010 at 12:54:20 -0400, piper.guy1 wrote:
>>> 1. Can you create PEM's in OpenSSL without a passphrase?
>> 
>> openssl req -nodes ...
> 
> Now, as a newbie to security, what's my risk exposure?


It's not that simple. How secure your system is a function of your threat model, how the system is designed and how it is implemented. Adding a certificate without password may or may not affect the security level of your system.

Regards,
Spencer


references

message navigation