Thanks Scott. Don't be shy about re-doing what's there. ;)

Out of curiousity as much as anything, what's different about this procedure?

--
-Eric 'shubes'

Scott Hughes wrote:
I have confirmed that this works in Outlook 2007. I haven't had time to check any other clients. Apparently is seems that Outlook 2007 has an AUTH issue that did not show up under Courier IMAP, but does show up under Dovecot IMAP.

Here are the steps I took to get the StartCom (http://cert.startcom.org/) free cert. to work:

1) Obtain the ssl.key and ssl.crt file from StartCom (cut and paste) and saving them onto my QMT server.

NOTE: During the process of getting the cert from StartCom, you will be required to put a password on the .key file. If your provider did not require a password, skip the next step.

2) Copy your original private key (ssl.key) so that you can retain it untouched:
# cp ssl.key pvt_ssl.key

3) This next step will remove the password from your key file:
# openssl rsa -in pvt_ssl.key -out ssl.key

4) Backup your old servercert.pem file (just in case):
# cp /var/qmail/control/servercert.pem /var/qmail/control/old_servercert.pem

5) This step will put the ssl.key and ssl.crt file together and in the correct place:
# cat ssl.key ssl.crt > /var/qmail/control/servercert.pem

That is it! As always please feel free to point out any mistakes in this or anything that would make it better!

Eric - I wanted to get this information out and I will think about the best way to update the wiki page. There is still some good information on there that I wouldn't want to step on by mistake. I may put a 'Notes' section on the bottom.

Scott



On Sat, May 15, 2010 at 11:49 AM, Eric Shubert <[email protected] <mailto:[email protected]>> wrote:

    Scott Hughes wrote:

        I am interested in obtaining a real certificate for my mail
        server.  I have signed up with StartCom
        (http://cert.startcom.org/) for a free one.  They appear to be
        the most recognized of the free services.

        My question is this:  How do I go about applying this to my QMT
        setup? StartCom gave me two things: 1) A private key cert  2)
        the actual key cert (I think).  They suggested saving the files
        as ssl.key and ssl.crt respectively.

        Never having done anything like this before, I put the .crt file
        in place of the servercert.pem file with no luck.

        Scott


    Your answer should be on the
    http://wiki.qmailtoaster.com/index.php/Certificate page. That page
    could use some cleaning up, so please update it if you'd like to
    improve it.

-- -Eric 'shubes'


    
---------------------------------------------------------------------------------
    Qmailtoaster is sponsored by Vickers Consulting Group
    (www.vickersconsulting.com <http://www.vickersconsulting.com>)
      Vickers Consulting Group offers Qmailtoaster support and
    installations.
        If you need professional help with your setup, contact them today!
    
---------------------------------------------------------------------------------
       Please visit qmailtoaster.com <http://qmailtoaster.com> for the
    latest news, updates, and packages.
            To unsubscribe, e-mail:
    [email protected]
    <mailto:[email protected]>
       For additional commands, e-mail:
    [email protected]
    <mailto:[email protected]>





---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and installations.
     If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
    Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: [email protected]
    For additional commands, e-mail: [email protected]


Reply via email to