Certificate: Difference between revisions

From QmailToaster
Jump to navigation Jump to search
No edit summary
No edit summary
Line 3: Line 3:
To configure a SSL certificate for TLS and/or SSL over SMTP:
To configure a SSL certificate for TLS and/or SSL over SMTP:


# Abstract: Create Certificate
# Abstract: Create Certificate
#* Generate key
#; Generate key
#* Generate signing request
#; Generate signing request
#* Sign the key
#; Sign the key
#* Create server certificate
#; Create server certificate
#* Set permission
#; Set permission
#* Set owner
#; Set owner
#* Copy into place
#; Copy into place
#* Restart services
#; Restart services
 
# Self-Signed Certificate
# Self-Signed Certificate
## openssl genrsa -out x.key 2048
## openssl genrsa -out x.key 2048
## openssl req -new -key x.key -out x.csr
## openssl req -new -key x.key -out x.csr
## openssl x509 -req -days 3650 -in x.csr -signkey x.key -out x.crt
## openssl x509 -req -days 3650 -in x.csr -signkey x.key -out x.crt
## cat x.crt x.key > servercert.pem
## cat x.crt x.key > servercert.pem
## chmod 644 servercert.pem
## chmod 644 servercert.pem
## chown root:qmail servercert.pem
## chown root:qmail servercert.pem
## cp -p servercert.pem /var/qmail/control
## cp -p servercert.pem /var/qmail/control

Revision as of 11:01, 20 March 2024

Security Certificate

To configure a SSL certificate for TLS and/or SSL over SMTP:

  1. Abstract: Create Certificate
    Generate key
    Generate signing request
    Sign the key
    Create server certificate
    Set permission
    Set owner
    Copy into place
    Restart services
  2. Self-Signed Certificate
    1. openssl genrsa -out x.key 2048
    2. openssl req -new -key x.key -out x.csr
    3. openssl x509 -req -days 3650 -in x.csr -signkey x.key -out x.crt
    4. cat x.crt x.key > servercert.pem
    5. chmod 644 servercert.pem
    6. chown root:qmail servercert.pem
    7. cp -p servercert.pem /var/qmail/control
Retrieved from "http://wiki.qmailtoaster.org:80/index.php?title=Certificate&oldid=247"