Certificate: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| Line 3: | Line 3: | ||
To configure a SSL certificate for TLS and/or SSL over SMTP: | To configure a SSL certificate for TLS and/or SSL over SMTP: | ||
# Abstract: Create Certificate | # Abstract: Create Certificate | ||
#* Generate key | #* Generate key | ||
#* Generate signing request | #* Generate signing request | ||
#* Sign the key | #* Sign the key | ||
#* Create server certificate | #* Create server certificate | ||
#* Set permission | #* Set permission | ||
#* Set owner | #* Set owner | ||
#* Copy into place | #* Copy into place | ||
#* Restart services | #* Restart services | ||
# Self-Signed Certificate | # Self-Signed Certificate | ||
## openssl genrsa -out x.key 2048 | ## openssl genrsa -out x.key 2048 | ||
## openssl req -new -key x.key -out x.csr | ## openssl req -new -key x.key -out x.csr | ||
## openssl x509 -req -days 3650 -in x.csr -signkey x.key -out x.crt | ## openssl x509 -req -days 3650 -in x.csr -signkey x.key -out x.crt | ||
## cat x.crt x.key > servercert.pem | ## cat x.crt x.key > servercert.pem | ||
## chmod 644 servercert.pem | ## chmod 644 servercert.pem | ||
## chown root:qmail servercert.pem | ## chown root:qmail servercert.pem | ||
## cp -p servercert.pem /var/qmail/control | ## cp -p servercert.pem /var/qmail/control | ||
Revision as of 10:59, 20 March 2024
Security Certificate
To configure a SSL certificate for TLS and/or SSL over SMTP:
# Abstract: Create Certificate #* Generate key #* Generate signing request #* Sign the key #* Create server certificate #* Set permission #* Set owner #* Copy into place #* Restart services
# Self-Signed Certificate ## openssl genrsa -out x.key 2048 ## openssl req -new -key x.key -out x.csr ## openssl x509 -req -days 3650 -in x.csr -signkey x.key -out x.crt ## cat x.crt x.key > servercert.pem ## chmod 644 servercert.pem ## chown root:qmail servercert.pem ## cp -p servercert.pem /var/qmail/control