Jorge Bastos wrote: > Howdy people, > > > > The SSL world is kind of new for me. > > I’m asking for some guidance to insert SSL capabilities to DBMail to get > rid of stunnel.
For a simple self-signed certificate I use following script. The PEM file will end up in /etc/ssl/certs/ Make sure the CN you use in the certificate is the same as the hostname people (you) will connect to. In dbmail.conf setup the tls parameters (example): tls_cafile = /etc/ssl/certs/mail.decimal.pt.pem tls_cert = /etc/ssl/certs/mail.decimal.pt.pem tls_key = /etc/ssl/certs/mail.decimal.pt.pem restart, y ya esta! I'm not sure how outlook deals with self-signed keys, though. Of course, for *real* trusted certificates you will have to: generate a host key, issue a certificate signing request (CSR), submit the CSR to a signing authority, obtain the signed certificate (CRT), and install it. There are several HOWTO's floating around on the net. -- ________________________________________________________________ Paul Stevens paul at nfg.nl NET FACILITIES GROUP GPG/PGP: 1024D/11F8CD31 The Netherlands________________________________http://www.nfg.nl
makecert.sh
Description: Bourne shell script
_______________________________________________ Dbmail-dev mailing list [email protected] http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail-dev
