You are not logged in.
- Topics: Active | Unanswered
#1 2013-10-28 15:58:51
- theckman
- Member
- Registered: 2011-09-06
- Posts: 3
SSL Passphrases with Nginx and Systemd
I'm currently looking to migrate one of my systems to Arch Linux with Nginx powering my web stack. For my site I use a wildcard SSL certificate for communication, and of course my SSL key is passphrased.
While finishing up the last things on the system last night, I came around to actually putting the real cert on the system and starting Nginx. To my surprise Nginx failed. Using `journal -xn` I found that it was requesting the SSL key's passphrase via stdin which wasn't being sent to me, and thus would just fail.
How are people using SSL passphrases with systemd? I saw some work-around suggestions for Apache in relation to the PasswordAgent, are there any for Nginx? I'm starting to think that I'm just going to need to disable the systemd service for nginx and write my own init script.
I've taken a look at the systemd documentation, and there seemed to be plenty of theoretical / philosophical information about the PasswordAgent but nothing specific about how you add support to a service that needs it. It's possible I just missed the relevant article.
Any information will be greatly helpful.
Cheers!
-Tim
Offline
#2 2013-10-31 19:38:14
- decaturguy
- Member
- From: Sweden
- Registered: 2006-11-28
- Posts: 117
Re: SSL Passphrases with Nginx and Systemd
Maybe this will help you: http://forum.nginx.org/read.php?2,21464 … msg-214641
Offline
#3 2013-11-03 02:43:22
- theckman
- Member
- Registered: 2011-09-06
- Posts: 3
Re: SSL Passphrases with Nginx and Systemd
Thank you for the suggestion, I'm not sure how I missed this patch.
I'd like to avoid having to compile nginx from source. I suppose I should probably open a bug report on the project to allow this to be a core feature.
Cheers!
-Tim
Offline