pem file = "/etc/opt/bincimap/binc.pem",
ca file = "/etc/opt/bincimap/diy_ca.pem",
cipher list = "!ADH:RC4+RSA:HIGH:MEDIUM:LOW:EXP:+SSLv2:+EXP",
verify peer = "no"
}se two files are the pem file and ca file in the SSL section of
bincimap.conf:
SSL {
pem file = "/etc/opt/bincimap/binc.pem",
ca file = "/etc/opt/bincimap/diy_ca.pem",
cipher list = "!ADH:RC4+RSA:HIGH:MEDIUM:LOW:EXP:+SSLv2:+EXP",
verify peer = "no"
----- Original Message -----
From: "Peter Stuge" <[EMAIL PROTECTED]>
To: <[email protected]>
Sent: Saturday, June 11, 2005 6:27 PM
Subject: Re: [binc] Question on SLL howto by Peter Stuge
> On Sat, Jun 11, 2005 at 03:50:22PM +0200, Grant Fletcher wrote:
> > Thanks!
>
> No problem, I didn't do that much. :)
>
>
> > Hi, below is an extract from your guide,
> > can you tell me where the file diy_ca.pem comes from.
>
> Sure, see below.
>
>
> > I dont see it in my directory.
> >
> > I have the pem file.
>
> [..]
>
> > Enter the CA key pass phrase and check that everything in the
> > request is correctly filled out, then sign and commit. (The
> > generated certificate will also be stored in
> > newcerts/<new_serial>.pem)
>
> ***
> > Now copy binc.cert, and the CA certificate file
> > (/usr/local/ssl/ca_diy/cert) back to the Binc server,
> ***
>
> > and cat binc.key and binc.cert together into binc.pem.
> > cd /etc/opt/bincimap
> > (umask 077; cat binc.key binc.cert > binc.pem)
>
> ***
> > mv cert diy_ca.cert
> ***
>
>
> diy_ca.cert is the CA certificate file which is in
> /usr/local/ssl/ca_diy/cert so simply copy it from the CA to where
> Binc is running.
>
>
> //Peter
>
Hi
Your guide has a refernece to the bincimap.conf file..
the line : ca file = "/etc/opt/bincimap/diy_ca.pem"
where is the diy_ca.pem file,? i have a diy_ca.cert in my
/etc/opt/bincimap directory.
SSL {
pem file = "/etc/opt/bincimap/binc.pem",
ca file = "/etc/opt/bincimap/diy_ca.pem",
cipher list = "!ADH:RC4+RSA:HIGH:MEDIUM:LOW:EXP:+SSLv2:+EXP",
verify peer = "no"
}
