From 5a428535a45dcc6e1c71d3b4a221fad60d29658f Mon Sep 17 00:00:00 2001
From: RKolodziejczxyk <itdesk-stacja@dlk.pl>
Date: Thu, 30 Jul 2015 12:11:18 +0200
Subject: [PATCH] Fixing error in CSR (by disabling challenge phrase) when
 creating using ispConfig:

https://ssltools.websecurity.symantec.com/checker/views/csrCheck.jsp
You have 1 error
Your CSR contains a challenge phrase.
Adding a challenge phrase to a CSR is not a secure practice. Please generate a new CSR that does not contain a challenge phrase.

The problem occure while buying a cert from https://www.ssls.com/
The support reply with:
"Please regenerate it without the passphrase and try to activate the certificate once again."
---
 server/plugins-available/apache2_plugin.inc.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/plugins-available/apache2_plugin.inc.php b/server/plugins-available/apache2_plugin.inc.php
index 98a53780a..25147e46e 100644
--- a/server/plugins-available/apache2_plugin.inc.php
+++ b/server/plugins-available/apache2_plugin.inc.php
@@ -283,7 +283,7 @@ class apache2_plugin {
         emailAddress           = webmaster@".$data['new']['domain']."
 
         [ req_attributes ]
-        challengePassword              = A challenge password";
+        ";//challengePassword              = A challenge password";
 
 			$ssl_cnf_file = $ssl_dir.'/openssl.conf';
 			$app->system->file_put_contents($ssl_cnf_file, $ssl_cnf);
-- 
GitLab