Certificate

From QmailToaster
Revision as of 09:58, 20 March 2024 by Ebroch (talk | contribs)
Jump to navigation Jump to search

Security Certificate

To configure a SSL certificate for TLS and/or SSL over SMTP:

  1. Abstract: Create Certificate
    • Generate key
    • Generate signing request
    • Sign the key
    • Create server certificate
    • Set permission
    • Set owner
    • Copy into place
    • Restart services
  1. Self-Signed Certificate
    1. openssl genrsa -out x.key 2048
    2. openssl req -new -key x.key -out x.csr
    3. openssl x509 -req -days 3650 -in x.csr -signkey x.key -out x.crt
    4. cat x.crt x.key > servercert.pem
    5. chmod 644 servercert.pem
    6. chown root:qmail servercert.pem
    7. cp -p servercert.pem /var/qmail/control