Re: [qmailtoaster] after using jack's script... some new info on QT

[Erik Espinoza]

Indeed!



On 2/4/06, Jake Vickers <[EMAIL PROTECTED]> wrote:
> Shai wrote:
>
> >I'm still trying to find my hands and legs around this issue... not
> >being very fimiliar with the terms and condition, signing certificates
> >and stuff like that...
> >
> >
> >
> Basically what Erik was saying I believe, is that unless you want to set
> up your own DNS servers (if you don't have them already), then you'll
> always get only 1 domain as having a valid SSL key.
>
> -
>  QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Jake Vickers]

Shai wrote:


I'm still trying to find my hands and legs around this issue... not
being very fimiliar with the terms and condition, signing certificates
and stuff like that...

 

Basically what Erik was saying I believe, is that unless you want to set 
up your own DNS servers (if you don't have them already), then you'll 
always get only 1 domain as having a valid SSL key.


-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Shai]

I'm still trying to find my hands and legs around this issue... not
being very fimiliar with the terms and condition, signing certificates
and stuff like that...

I'm trying to work it out ...

Shai

On 2/4/06, Erik Espinoza <[EMAIL PROTECTED]> wrote:
> That looks familiar, but I really don't remember writing that : )
>
> Thanks for finding it, I spent a little time looking when Nick
> referenced that I wrote an e-mail that explained this stuff. Just
> couldn't find it.
>
> Erik
>
> On 2/3/06, Jake Vickers <[EMAIL PROTECTED]> wrote:
> > Shai wrote:
> >
> > >Hi :)
> > >Just wanted to update you that it was indeed a recent change in our
> > >office's firewall rules that not everyone can open port 25. So that's
> > >the reason for it not working...
> > >
> > >I did however remain with the question on how do I change the SSL
> > >certificate to show my own info? Can I also use it to open a secure
> > >channel with my mail smtp/imap/pop3 ?
> > >
> > >
> > Erik Espinoza posted an email about this a while ago. Here's what he
> > posted: (I'll add it to the wiki today as well)
> >
> > Alright cool, there are different instructions for different
> > procedures. Basically I did the following:
> >
> > 1) Generate key:
> > # openssl genrsa -des3 -out servercert.key.enc 1024
> >
> > 2) Decrypt key:
> > # openssl rsa -in servercert.key.enc -out servercert.key
> >
> > 3) Generate Cert Request
> > # openssl req -new -key servercert.key -out servercert.csr
> >
> > 4) Went to RegisterFly, submitted servercert.csr for a trusted cert
> > ($15). Got back file, called it servercert.crt
> >
> > 5) Create std pem, put in /var/qmail/control/servercert.pem
> > # cat servercert.key servercert.crt > /var/qmail/control/servercert.pem
> >
> > 6) Restart qmail
> > # service qmail restart
> >
> > Also you can use this signed cert for apache by putting the
> > servercert.key in /etc/httpd/conf/ssl.key/server.key and putting
> > servercert.crt in /etc/httpd/conf/ssl.crt/server.crt
> >
> >
> >
> > -
> >  QmailToaster hosted by: VR Hosted 
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
> -
>  QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Erik Espinoza]

That looks familiar, but I really don't remember writing that : )

Thanks for finding it, I spent a little time looking when Nick
referenced that I wrote an e-mail that explained this stuff. Just
couldn't find it.

Erik

On 2/3/06, Jake Vickers <[EMAIL PROTECTED]> wrote:
> Shai wrote:
>
> >Hi :)
> >Just wanted to update you that it was indeed a recent change in our
> >office's firewall rules that not everyone can open port 25. So that's
> >the reason for it not working...
> >
> >I did however remain with the question on how do I change the SSL
> >certificate to show my own info? Can I also use it to open a secure
> >channel with my mail smtp/imap/pop3 ?
> >
> >
> Erik Espinoza posted an email about this a while ago. Here's what he
> posted: (I'll add it to the wiki today as well)
>
> Alright cool, there are different instructions for different
> procedures. Basically I did the following:
>
> 1) Generate key:
> # openssl genrsa -des3 -out servercert.key.enc 1024
>
> 2) Decrypt key:
> # openssl rsa -in servercert.key.enc -out servercert.key
>
> 3) Generate Cert Request
> # openssl req -new -key servercert.key -out servercert.csr
>
> 4) Went to RegisterFly, submitted servercert.csr for a trusted cert
> ($15). Got back file, called it servercert.crt
>
> 5) Create std pem, put in /var/qmail/control/servercert.pem
> # cat servercert.key servercert.crt > /var/qmail/control/servercert.pem
>
> 6) Restart qmail
> # service qmail restart
>
> Also you can use this signed cert for apache by putting the
> servercert.key in /etc/httpd/conf/ssl.key/server.key and putting
> servercert.crt in /etc/httpd/conf/ssl.crt/server.crt
>
>
>
> -
>  QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Erik Espinoza]

Due to the way SSL works, one will always get mismatched if you are
using different names. Many people work around this by putting an
internal dns server that points to the 192 address and the public dns
server with the real world. That way the name works on both.

Erik

On 2/3/06, Jake Vickers <[EMAIL PROTECTED]> wrote:
> Warren wrote:
>
> >Jake,
> >
> >Any way to have either more than 1 machine name on the certificate or
> >more than 1 certificate?  I have a 192.168.x.x address for the internal
> >users and and external address for my outside sales people.  Must one of
> >these groups always get the mismatched name popup?
> >
> >
> I don't have a good answer for you at this time. I can look into it if I
> get some time over the weekend, though. Hopefully someone will know and
> post something (any ideas, Erik?)
>
>
> -
>  QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Jake Vickers]

Warren wrote:


Jake,

Any way to have either more than 1 machine name on the certificate or
more than 1 certificate?  I have a 192.168.x.x address for the internal
users and and external address for my outside sales people.  Must one of
these groups always get the mismatched name popup?
 

I don't have a good answer for you at this time. I can look into it if I 
get some time over the weekend, though. Hopefully someone will know and 
post something (any ideas, Erik?)



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Warren]

Jake,

Any way to have either more than 1 machine name on the certificate or
more than 1 certificate?  I have a 192.168.x.x address for the internal
users and and external address for my outside sales people.  Must one of
these groups always get the mismatched name popup?

TIA,
Warren

Jake Vickers wrote:
> Shai wrote:
>
>> Hi :)
>> Just wanted to update you that it was indeed a recent change in our
>> office's firewall rules that not everyone can open port 25. So that's
>> the reason for it not working...
>>
>> I did however remain with the question on how do I change the SSL
>> certificate to show my own info? Can I also use it to open a secure
>> channel with my mail smtp/imap/pop3 ?
>>  
>>
> Erik Espinoza posted an email about this a while ago. Here's what he
> posted: (I'll add it to the wiki today as well)
>
> Alright cool, there are different instructions for different
> procedures. Basically I did the following:
>
> 1) Generate key:
> # openssl genrsa -des3 -out servercert.key.enc 1024
>
> 2) Decrypt key:
> # openssl rsa -in servercert.key.enc -out servercert.key
>
> 3) Generate Cert Request
> # openssl req -new -key servercert.key -out servercert.csr
>
> 4) Went to RegisterFly, submitted servercert.csr for a trusted cert
> ($15). Got back file, called it servercert.crt
>
> 5) Create std pem, put in /var/qmail/control/servercert.pem
> # cat servercert.key servercert.crt > /var/qmail/control/servercert.pem
>
> 6) Restart qmail
> # service qmail restart
>
> Also you can use this signed cert for apache by putting the
> servercert.key in /etc/httpd/conf/ssl.key/server.key and putting
> servercert.crt in /etc/httpd/conf/ssl.crt/server.crt
>
>
>
> -
> QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Jake Vickers]

Shai wrote:


Hi :)
Just wanted to update you that it was indeed a recent change in our
office's firewall rules that not everyone can open port 25. So that's
the reason for it not working...

I did however remain with the question on how do I change the SSL
certificate to show my own info? Can I also use it to open a secure
channel with my mail smtp/imap/pop3 ?
 

Erik Espinoza posted an email about this a while ago. Here's what he 
posted: (I'll add it to the wiki today as well)


Alright cool, there are different instructions for different
procedures. Basically I did the following:

1) Generate key:
# openssl genrsa -des3 -out servercert.key.enc 1024

2) Decrypt key:
# openssl rsa -in servercert.key.enc -out servercert.key

3) Generate Cert Request
# openssl req -new -key servercert.key -out servercert.csr

4) Went to RegisterFly, submitted servercert.csr for a trusted cert
($15). Got back file, called it servercert.crt

5) Create std pem, put in /var/qmail/control/servercert.pem
# cat servercert.key servercert.crt > /var/qmail/control/servercert.pem

6) Restart qmail
# service qmail restart

Also you can use this signed cert for apache by putting the
servercert.key in /etc/httpd/conf/ssl.key/server.key and putting
servercert.crt in /etc/httpd/conf/ssl.crt/server.crt



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Shai]

Hi :)
Just wanted to update you that it was indeed a recent change in our
office's firewall rules that not everyone can open port 25. So that's
the reason for it not working...

I did however remain with the question on how do I change the SSL
certificate to show my own info? Can I also use it to open a secure
channel with my mail smtp/imap/pop3 ?

Your help is much appreciated !!!

Shai

On 2/2/06, Shai <[EMAIL PROTECTED]> wrote:
> # iptables -L -nv
> Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
>  pkts bytes target prot opt in out source   
> destination
>
> Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
>  pkts bytes target prot opt in out source   
> destination
>
> Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
>  pkts bytes target prot opt in out source   
> destination
>
> Shai
>
> On 2/2/06, Roberto Lourenço <[EMAIL PROTECTED]> wrote:
> > Shai,
> > Try
> >
> > # iptables -L -nv
> >
> > then you will see what realy is running on the Server´s firewall...
> >
> >
> >
> >
> > Roberto Lourenço
> >
> >
> > -Mensagem original-
> > De: Shai [mailto:[EMAIL PROTECTED]
> > Enviada em: quinta-feira, 2 de fevereiro de 2006 03:31
> > Para: qmailtoaster-list@qmailtoaster.com
> > Assunto: Re: [qmailtoaster] after using jack's script... some new info on QT
> >
> > Warren,
> > Well... I don't have that iptabels file ... :\
> > # ls -al iptab*
> > -rw---  1 root root 1375 Feb 22  2005 iptables-config
> >
> > Is that normal?
> >
> > Shai
> >
> > On 2/2/06, Jake Vickers <[EMAIL PROTECTED]> wrote:
> > > Shai wrote:
> > >
> > > >well, I do need some more info... please ;)
> > > >
> > > >from my house, when I telnet to port 25 on the server, i get the
> > > >welcome info but when I try from my work's place, I get:
> > > ># telnet mail.myserver.com 25
> > > >Trying xx.xxx.xx.xx...
> > > >telnet: Unable to connect to remote host: Connection refused
> > > >
> > > >Why refused? the port IS open and I AM able to telnet from my office.
> > > >Is there a log I can check why a connection would be refused? :\
> > > >We do not have a firewall to out going connection in my office.
> > > >
> > > >
> > > Are you on a different carrier at work that blocks port 25, maybe?  It's
> > > shooting in the dark, but it doesn't hurt to get all the facts out in
> > > the open.
> > > Warren may be on to something as well, as far as being blocked.   You
> > > can send me the IP off-list if you want, and I'll try and telnet in.
> > >
> > > -
> > >  QmailToaster hosted by: VR Hosted <http://www.vr.org>
> > > -
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail: [EMAIL PROTECTED]
> > >
> > >
> >
> > -
> >  QmailToaster hosted by: VR Hosted <http://www.vr.org>
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
> >
> > -
> >  QmailToaster hosted by: VR Hosted <http://www.vr.org>
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Shai]

# iptables -L -nv
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target prot opt in out source   destination

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target prot opt in out source   destination

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target prot opt in out source   destination

Shai

On 2/2/06, Roberto Lourenço <[EMAIL PROTECTED]> wrote:
> Shai,
> Try
>
> # iptables -L -nv
>
> then you will see what realy is running on the Server´s firewall...
>
>
>
>
> Roberto Lourenço
>
>
> -Mensagem original-
> De: Shai [mailto:[EMAIL PROTECTED]
> Enviada em: quinta-feira, 2 de fevereiro de 2006 03:31
> Para: qmailtoaster-list@qmailtoaster.com
> Assunto: Re: [qmailtoaster] after using jack's script... some new info on QT
>
> Warren,
> Well... I don't have that iptabels file ... :\
> # ls -al iptab*
> -rw---  1 root root 1375 Feb 22  2005 iptables-config
>
> Is that normal?
>
> Shai
>
> On 2/2/06, Jake Vickers <[EMAIL PROTECTED]> wrote:
> > Shai wrote:
> >
> > >well, I do need some more info... please ;)
> > >
> > >from my house, when I telnet to port 25 on the server, i get the
> > >welcome info but when I try from my work's place, I get:
> > ># telnet mail.myserver.com 25
> > >Trying xx.xxx.xx.xx...
> > >telnet: Unable to connect to remote host: Connection refused
> > >
> > >Why refused? the port IS open and I AM able to telnet from my office.
> > >Is there a log I can check why a connection would be refused? :\
> > >We do not have a firewall to out going connection in my office.
> > >
> > >
> > Are you on a different carrier at work that blocks port 25, maybe?  It's
> > shooting in the dark, but it doesn't hurt to get all the facts out in
> > the open.
> > Warren may be on to something as well, as far as being blocked.   You
> > can send me the IP off-list if you want, and I'll try and telnet in.
> >
> > -
> >  QmailToaster hosted by: VR Hosted <http://www.vr.org>
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
> -
>  QmailToaster hosted by: VR Hosted <http://www.vr.org>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
>
> -
>  QmailToaster hosted by: VR Hosted <http://www.vr.org>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Johnny Hughes]

On Thu, 2006-02-02 at 08:31 +0200, Shai wrote:
> Warren,
> Well... I don't have that iptabels file ... :\
> # ls -al iptab*
> -rw---  1 root root 1375 Feb 22  2005 iptables-config
> 
> Is that normal?

That is normal if you have no firewall installed.

> 
> On 2/2/06, Jake Vickers <[EMAIL PROTECTED]> wrote:
> > Shai wrote:
> >
> > >well, I do need some more info... please ;)
> > >
> > >from my house, when I telnet to port 25 on the server, i get the
> > >welcome info but when I try from my work's place, I get:
> > ># telnet mail.myserver.com 25
> > >Trying xx.xxx.xx.xx...
> > >telnet: Unable to connect to remote host: Connection refused
> > >
> > >Why refused? the port IS open and I AM able to telnet from my office.
> > >Is there a log I can check why a connection would be refused? :\
> > >We do not have a firewall to out going connection in my office.
> > >
> > >
> > Are you on a different carrier at work that blocks port 25, maybe?  It's
> > shooting in the dark, but it doesn't hurt to get all the facts out in
> > the open.
> > Warren may be on to something as well, as far as being blocked.   You
> > can send me the IP off-list if you want, and I'll try and telnet in.



signature.asc
Description: This is a digitally signed message part

Re: [qmailtoaster] after using jack's script... some new info on QT

[Shai]

Warren,
Well... I don't have that iptabels file ... :\
# ls -al iptab*
-rw---  1 root root 1375 Feb 22  2005 iptables-config

Is that normal?

Shai

On 2/2/06, Jake Vickers <[EMAIL PROTECTED]> wrote:
> Shai wrote:
>
> >well, I do need some more info... please ;)
> >
> >from my house, when I telnet to port 25 on the server, i get the
> >welcome info but when I try from my work's place, I get:
> ># telnet mail.myserver.com 25
> >Trying xx.xxx.xx.xx...
> >telnet: Unable to connect to remote host: Connection refused
> >
> >Why refused? the port IS open and I AM able to telnet from my office.
> >Is there a log I can check why a connection would be refused? :\
> >We do not have a firewall to out going connection in my office.
> >
> >
> Are you on a different carrier at work that blocks port 25, maybe?  It's
> shooting in the dark, but it doesn't hurt to get all the facts out in
> the open.
> Warren may be on to something as well, as far as being blocked.   You
> can send me the IP off-list if you want, and I'll try and telnet in.
>
> -
>  QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Jake Vickers]

Shai wrote:


well, I do need some more info... please ;)

from my house, when I telnet to port 25 on the server, i get the
welcome info but when I try from my work's place, I get:
# telnet mail.myserver.com 25
Trying xx.xxx.xx.xx...
telnet: Unable to connect to remote host: Connection refused

Why refused? the port IS open and I AM able to telnet from my office.
Is there a log I can check why a connection would be refused? :\
We do not have a firewall to out going connection in my office.
 

Are you on a different carrier at work that blocks port 25, maybe?  It's 
shooting in the dark, but it doesn't hurt to get all the facts out in 
the open.
Warren may be on to something as well, as far as being blocked.   You 
can send me the IP off-list if you want, and I'll try and telnet in.


-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Warren]

If you are using an internal network at work hat is in the 192.168.10.x 
range, the default iptables scripts in qmailtoaster block this range.  
Take a look at /etc/sysconfig/iptables and comment out the appropriate 
line, then restart iptables.


Regards,
Warren

Shai wrote:

well, I do need some more info... please ;)

from my house, when I telnet to port 25 on the server, i get the
welcome info but when I try from my work's place, I get:
# telnet mail.myserver.com 25
Trying xx.xxx.xx.xx...
telnet: Unable to connect to remote host: Connection refused

Why refused? the port IS open and I AM able to telnet from my office.
Is there a log I can check why a connection would be refused? :\
We do not have a firewall to out going connection in my office.

Shai

  

  



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[Shai]

well, I do need some more info... please ;)

from my house, when I telnet to port 25 on the server, i get the
welcome info but when I try from my work's place, I get:
# telnet mail.myserver.com 25
Trying xx.xxx.xx.xx...
telnet: Unable to connect to remote host: Connection refused

Why refused? the port IS open and I AM able to telnet from my office.
Is there a log I can check why a connection would be refused? :\
We do not have a firewall to out going connection in my office.

Shai

On 2/1/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> Hi Shai,
>
> > Hi,
> >
> > I still have some things I want to fix, please help me out :)
> >
> > 1. what is the 6th step about the certificate being made for QT?
> >   a) is it for
>
> HTTPS port 443
>
> >   b) is it for
>
> SMTP port 25
> POP3 port 110
> IMAP port 143
>
> > 2. where are the certs for ssl?
>
> https /etc/httpd/.conf/ssl* (for RedHat, Mandrake, & Mandrive [I think])
>
> > 3. when I go into https://myserver.com/webmail the certificate is
> > signed by SomeCompany bla bla ... even after I used jack's
> > toaster-install script and entered the info I need for the pem cert.
>
> Erik had a post that covered everything, and a signed cert, sometime ago.
> Maybe, he could post it again. He used the same cert for his mailserver
> and his web server.
>
> Note to Erik: Did you use your IP address for the common name?
>
>
> Regards,
>
> Nick
>
>
> -
>  QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] after using jack's script... some new info on QT

[nick]

Hi Shai,

> Hi,
>
> I still have some things I want to fix, please help me out :)
>
> 1. what is the 6th step about the certificate being made for QT?
>   a) is it for

HTTPS port 443

>   b) is it for

SMTP port 25
POP3 port 110
IMAP port 143

> 2. where are the certs for ssl?

https /etc/httpd/.conf/ssl* (for RedHat, Mandrake, & Mandrive [I think])

> 3. when I go into https://myserver.com/webmail the certificate is
> signed by SomeCompany bla bla ... even after I used jack's
> toaster-install script and entered the info I need for the pem cert.

Erik had a post that covered everything, and a signed cert, sometime ago.
Maybe, he could post it again. He used the same cert for his mailserver
and his web server.

Note to Erik: Did you use your IP address for the common name?


Regards,

Nick


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]