Mailing List Archive

From:: Christian Schulte <cs@schulte.it>
Subject:: Re: httpd: support encrypted tls server keys
To:: Jan Schreiber <jes@posteo.de>, tech@openbsd.org
Date:: Wed, 18 Feb 2026 02:52:32 +0100

Download raw body.

Thread

2026-02-14 19:10 Christian Schulte:
httpd: support encrypted tls server keys
- 2026-02-15 14:45 Jan Schreiber:
  httpd: support encrypted tls server keys
- - 2026-02-18 01:52 Christian Schulte:
    httpd: support encrypted tls server keys
  - - 2026-02-20 15:32 Jan Schreiber:
      httpd: support encrypted tls server keys
    - - 2026-02-20 17:47 Peter Hessler:
        httpd: support encrypted tls server keys

Am 15.02.2026 um 15:45 schrieb Jan Schreiber:
> While there I notices relayd also never calls check_file_secrecy.
> So the ca key password will also be visible in the relayd.conf
> 
> If it's the right way I'll send an additional diff for relayd in another 
> thread.

Maybe a bug [1].

[1] <https://marc.info/?l=openbsd-bugs&m=177138197714945>

2026-02-14 19:10 Christian Schulte:
httpd: support encrypted tls server keys
- 2026-02-15 14:45 Jan Schreiber:
  httpd: support encrypted tls server keys
- - 2026-02-18 01:52 Christian Schulte:
    httpd: support encrypted tls server keys
  - - 2026-02-20 15:32 Jan Schreiber:
      httpd: support encrypted tls server keys
    - - 2026-02-20 17:47 Peter Hessler:
        httpd: support encrypted tls server keys