[Box Backup] offline CA

Thu, 03 Feb 2005 15:51:06 -0600

It is best to have your certificates isolated so there is less risk of comp=
rimising them.  I want to accomplish this by keeping them on a usb hard dri=
ve and backing them up to CD.  The usb hard drive would be attached only wh=
en I needed to sign certs or get them in case one of my own machines needs =
to be restored due to failure and data loss.=20=20

does anyone see any problem with this?  My plan is to create a ca user on t=
he backup server and   mount /dev/sd0c /home/ca.

-Justin