On Mon, 2002-03-11 at 13:21, Aarno Aukia wrote: > I decrypted the signed keyiles we got from the CA for use with apache > by using openssl: > $ openssl rsa -in server.key -out server.pem > the resulting pem file works flawlessly with apache, but when I > replace the pem's made with mkesmtpdcert, mkpop3dcert and mkimapdcert > (which all work all fine too, but (obviously) aren't signed), > pop3-ssl and imap-ssl stop working.
Apache normally uses separate key and certificate files. Courier's expects a PEM file containing both. Look at the format of the original files and you should be able to figure out how they are supposed to be formatted. > I can't test it myself, but > looking-over-the-shoulder of an outlook-user some strange "Unknown > error occurred (0x<somethingsomething>)" is being shown. Testing should be simple. Try this: openssl s_client -connect <mail.host>:995 See the man page for "s_client" for more information.
signature.asc
Description: This is a digitally signed message part
