I'm in the process of upgrading my email system from a relatively simple qmail+POP3 setup to a qmail+vpopmail+IMAP+POP3+webmail monster. If you're interested, I've put my notes up at http://www.differentpla.net/node/view/165
Anyway, I'm into the final stages. I've got everything working on my test box the way that I want it. The last thing to do before I upgrade my "production" box in the same way is to make everything nice and secure. This includes HTTPS for webmail; IMAPS, POP3S and (possibly) SMTP-TLS for email. I've got HTTPS working (I'm going to use a self-CA signed certificate, since I have control over which clients attempt to connect). My question is this: when I went to set up another certificate for IMAPS, the sign.sh script (from mod_ssl) complained because I used the same details as the HTTPS key. Do I need a separate certificate, or should I just point BincIMAP at the certificate that Apache is using? Cheers, Roger.
