Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [private-key]

170 questions
6
votes
1 answer

Vim SCP parameter with private public key pair

Currently, I am trying to edit a file on a remote server using Vim's built-in netrw plugin. I can SSH fine into my Amazon EC2 server using a command like this: ssh -i bitname@ However, I'd like to be able to use my own Vim…
Delos Chang
  • 163
  • 1
  • 4
6
votes
1 answer

Does openssl always encrypt the private key?

When using openssl 0.9.8 to create a new self-signed cert+key, there is a -nodes parameter that can be used to tell openssl to not encrypt the private key it creates. For example: openssl req -x509 -nodes -days 365 \ -subj…
Stéphane
  • 456
  • 1
  • 7
  • 16
6
votes
2 answers

What are the risks in backing up private keys on services like Dropbox?

I have a couple of private keys that I use to administer Amazon EC2 instances. I recently lost these keys when I did a re-install of my computer and I found out that the CD-RW I'd backed them up to was unreadable. So, I'm looking for a slightly more…
brabster
  • 173
  • 1
  • 7
5
votes
1 answer

How to export private key? (GnuPG)

I have successfully created GnuPG public/private key pair using RSA and RSA algorithm. How can I export a public key and private key in the form of file with the .asc extension?
rancho
  • 181
  • 1
  • 1
  • 4
5
votes
1 answer

Keeping track of SSH private keys without comments

SSH public keys support comments (which simply consist of text appended to the end of the key), which makes it easy to identify an otherwise unidentifiable id_rsa.pub file. You can use the comment to store information such as who the key belongs to,…
Frogging101
  • 53
  • 1
  • 7
5
votes
3 answers

how to prevent a user using private key after leaving organization?

In the enterprise environment, each user was issue a key pair for using to encrypting/signing. Since they have the private key, that mean they can decrypt any file that encrypt for them, even after leaving organization and their certificate was…
David
4
votes
1 answer

What happens when someone gets to know the secret key (of the web server / a CA)?

basically, I have three questions and I would be grateful for a brief explanation of the differences in the consequences of these thefts: What happens when someone gets to know the secret key of the web server? What happens when someone gets to…
Marcel C
  • 43
  • 2
4
votes
3 answers

Apache SSL without Private Key

We are currently working with a client who needs SAML authentication to setup their QA site on our servers. They have sent us the CRT file for the SSL to install, however they are not sending the key. I know that at the very minimum SSL requires…
DidierTech
  • 53
  • 1
  • 2
  • 6
4
votes
2 answers

How to SSH to a remote server using a private key on Linux?

I have been trying to connect to a remote server using my private key file from the terminal, but it doesn't seem to work. I don't understand why. Here is how I do it: $ ssh -i private.ppk oap@10.20.0.11 Enter passphrase for key 'private.ppk': Enter…
Fokwa Best
  • 171
  • 6
4
votes
1 answer

Node + PM2 - How to securely read SSL private key with non-root user?

I'm looking for a way to run node via PM2 whilst reading an SSL private-key that is placed in a secure directory. Details: Bitnami LEMP stack with Node permissions for /etc/ssl/private: drwx------ 2 root root 4096 private permissions for key…
jolian
  • 107
  • 1
  • 6
4
votes
3 answers

Forgot the password for an encrypted SSH key that's in my (gnome) SSH agent. How do I extract unencrypted version?

OK, I have an encrypted ssh private key that provides access to a server. My Ubuntu GNOME desktop has an integrated graphical ssh agent (seahorse v3.2.2). That ssh key is in this ssh agent and it's automatically unlocked when I log into my desktop.…
Amandasaurus
  • 31,471
  • 65
  • 192
  • 253
4
votes
2 answers

Extract private key from Domino keyring

I'm trying to use a multipurpose certificate on an infrastucture that contains a Domino 7 server. To accomplish this, I tried: Generate a CSR outside of Domino: I'm able to use the produced certificate everywhere but not on Domino because it…
Andrea Colleoni
  • 141
  • 3
4
votes
1 answer

Can apache use a key agent to store private keys for SSL?

For mod_ssl in apache to work, you need your RSA private key on the server. If the key is passphrase protected, you have to enter the passphrase whenever you restart apache. There is SSLPassPhraseDialog so you can store the key encrypted and have a…
Corey Henderson
  • 194
  • 7
4
votes
1 answer

How can I use an SSL certificate generated with Java keytool with Nginx?

I used the Java keytool to generate a "keystore": keytool -genkey -alias example.com -keyalg RSA -keystore example.com.keystore Then I generated a CSR (Certificate Signing Request): keytool -certreq -keyalg RSA -alias example.com -file…
Jonas
  • 1,187
  • 5
  • 19
  • 33
4
votes
1 answer

Get SSH fingerprint from remote server securely?

I had thought about this and my host provides out of band support, so I could simply create the key fingerprint out of band and compare it when connecting to that server from home. Is there any other way other than out of band access where you can…
James l.
  • 55
  • 3
1 2
3
11 12