Thanks Scott. Don't be shy about re-doing what's there. ;)
Out of curiousity as much as anything, what's different about this
procedure?
--
-Eric 'shubes'
Scott Hughes wrote:
I have confirmed that this works in Outlook 2007. I haven't had time to
check any other clients. Apparently is seems that Outlook 2007 has an
AUTH issue that did not show up under Courier IMAP, but does show up
under Dovecot IMAP.
Here are the steps I took to get the StartCom
(http://cert.startcom.org/) free cert. to work:
1) Obtain the ssl.key and ssl.crt file from StartCom (cut and paste) and
saving them onto my QMT server.
NOTE: During the process of getting the cert from StartCom, you will be
required to put a password on the .key file. If your provider did not
require a password, skip the next step.
2) Copy your original private key (ssl.key) so that you can retain it
untouched:
# cp ssl.key pvt_ssl.key
3) This next step will remove the password from your key file:
# openssl rsa -in pvt_ssl.key -out ssl.key
4) Backup your old servercert.pem file (just in case):
# cp /var/qmail/control/servercert.pem /var/qmail/control/old_servercert.pem
5) This step will put the ssl.key and ssl.crt file together and in the
correct place:
# cat ssl.key ssl.crt > /var/qmail/control/servercert.pem
That is it! As always please feel free to point out any mistakes in
this or anything that would make it better!
Eric - I wanted to get this information out and I will think about the
best way to update the wiki page. There is still some good information
on there that I wouldn't want to step on by mistake. I may put a
'Notes' section on the bottom.
Scott
On Sat, May 15, 2010 at 11:49 AM, Eric Shubert <[email protected]
<mailto:[email protected]>> wrote:
Scott Hughes wrote:
I am interested in obtaining a real certificate for my mail
server. I have signed up with StartCom
(http://cert.startcom.org/) for a free one. They appear to be
the most recognized of the free services.
My question is this: How do I go about applying this to my QMT
setup? StartCom gave me two things: 1) A private key cert 2)
the actual key cert (I think). They suggested saving the files
as ssl.key and ssl.crt respectively.
Never having done anything like this before, I put the .crt file
in place of the servercert.pem file with no luck.
Scott
Your answer should be on the
http://wiki.qmailtoaster.com/index.php/Certificate page. That page
could use some cleaning up, so please update it if you'd like to
improve it.
--
-Eric 'shubes'
---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com <http://www.vickersconsulting.com>)
Vickers Consulting Group offers Qmailtoaster support and
installations.
If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
Please visit qmailtoaster.com <http://qmailtoaster.com> for the
latest news, updates, and packages.
To unsubscribe, e-mail:
[email protected]
<mailto:[email protected]>
For additional commands, e-mail:
[email protected]
<mailto:[email protected]>
---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com)
Vickers Consulting Group offers Qmailtoaster support and installations.
If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]