Michael A Mayo wrote:
Starfield is not a root CA, but their intermediate cert is signed by
Valicert, which is a trusted root CA. I have heard that some older
software won't work with chained SSL certificates, but modern clients
should be OK. The Starfield chained cert works for me in IE, Firefox,
Tbird, Konquerer, and Kmail on Windows and Linux.
That is good news.
I don't think you needed to buy another certificate. You can get the
intermediate cert from the godaddy/starfield CA setup screen
(certificates.godaddy.com). It's also on the starfieldtech website:
https://certificates.starfieldtech.com/Repository.go
So we are talking about this certificate I guess...
https://certificates.starfieldtech.com/repository/sf_issuing.crt
and my courierd (0.47-3) already has this reference
/etc/courierd:TLS_TRUSTCERTS=/usr/lib/courier/rootcerts
so I copied the above line to imapd-ssl and the sf_issuing.crt
file to the referred directory and restarted courier. No go.
The other certs have some different format prepended (I presume)
and are called *.pem and I think I need to use "c_rehash" ?
Would you mind outlining a couple of extra steps please ?
--markc
-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
