On Wed, Mar 31, 2010 at 14:55:04 -0400, piper.guy1 wrote: > On Wed, Mar 31, 2010 at 2:35 PM, Joe Burpee <jeb [ at ] burkby [ dot ] com> wrote: >> On Wed, Mar 31, 2010 at 12:54:20 -0400, piper.guy1 wrote: >>> 1. Can you create PEM's in OpenSSL without a passphrase? >> >> openssl req -nodes ... > > Now, as a newbie to security, what's my risk exposure? It's not that simple. How secure your system is a function of your threat model, how the system is designed and how it is implemented. Adding a certificate without password may or may not affect the security level of your system. Regards, Spencer