Purpose of password when generating CSR

JayFromEpic

JayFromEpic

Well-Known Member
Apr 2, 2011
218
8
68
Scottsdale
cPanel Access Level
Root Administrator
Twitter
Hello,

Well I must say I have been using SSL's and cPanel itself for some years now and to this day, I have yet to actually use the password that is used when generating a CSR. To my understanding it was used back in the day when the webserver started to load the SSL but this obviously is not used anymore.

So bottom line, what is its use currently and is there any plans to phase this out in the future if its no longer used?


* This is probably a question for cpanel staff but community input is always appreciated :)
 
C

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,908
2,218
463
Hello :)

This is better explained when using the "Generate an SSL Certificate and Signing Request" option in Web Host Mananger with cPanel 11.38:

Some certificate authorities may require CSRs to have a passphrase. The certificate authority can use a CSR passphrase to confirm the identity of the person or organization with whom you wish to communicate. CSR passphrases are stored unencrypted in the CSR. Because of this, and also because you will share this passphrase with a third party, do not use an important password here.

Thank you.
 
C

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,908
2,218
463
SageBrian said:
That explanation might be nice on the CSR page, so people don't use a passphrase like, maybe, their root password.
Click to expand...
I can certainly open an internal case with that request. Could you let me know which specific CSR page(s) you feel it would be most useful at?

Thank you.
 
cPanelKenneth

cPanelKenneth

cPanel Development
Staff member
Apr 7, 2006
4,608
77
458
cPanel Access Level
Root Administrator
SageBrian said:
That explanation might be nice on the CSR page, so people don't use a passphrase like, maybe, their root password. :)
Click to expand...
In cPanel & WHM, the interfaces for generating a CSR contain the following text:

Some certificate authorities may require CSRs to have a passphrase. The certificate authority can use a CSR passphrase to confirm the identity of the person or organization with whom you wish to communicate. CSR passphrases are stored unencrypted in the CSR. Because of this, and also because you will share this passphrase with a third party, do not use an important password here.
Click to expand...
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
C root password and security policy Security 5
A is somebody using my server for malicious purposes? Security 1
S The purpose of /etc/profile.d/limit.sh Security 14
M Renaming cpanel in www.mysite.com/cpanel for security purpose Security 2
K How To: Assign IP address to existing reseller account for SSL purpose? Security 4
Similar threads
root password and security policy
is somebody using my server for malicious purposes?
The purpose of /etc/profile.d/limit.sh
Renaming cpanel in www.mysite.com/cpanel for security purpose
How To: Assign IP address to existing reseller account for SSL purpose?
Top Bottom