Date: Wed, 28 Jul 2004 15:58:16 -0700 From: Tom Limoncelli <tal@whatexit.org> To: freebsd-questions@freebsd.org Subject: Setting up good certs for ports/mail/imap-uw? Message-ID: <9C51062C-E0E9-11D8-B4EB-000D93C2342A@whatexit.org>
next in thread | raw e-mail | index | archive | help
The instructions for ports/mail/imap-uw tell you that "make cert" generates certs that are self-signed and warns you that it is better to get "real" certs but doesn't explain how to do that. Any suggestions? The long version... I install the port and then do "make cert" to make the certs: root@gsp:/ # cd /usr/ports/mail/imap-uw/ root@gsp:/usr/ports/mail/imap-uw # make cert Generating a 1024 bit RSA private key ...............................++++++ ............++++++ writing new private key to '/usr/local/certs/imapd.pem' ----- You are about to be asked to enter information that will be incorporated [...much later...] MD5 Fingerprint=09:88:5C:19:6A:3F:3A:F5:44:65:82:60:56:5A:B0:72 root@gsp:/usr/ports/mail/imap-uw # cd /usr/local/certs/ root@gsp:/usr/local/certs # ls imapd.pem ipop3d.pem Where is the .csr file to submit? Every document that explains the process says that self-signed certs are insecure and recommends getting a real cert, but never tells you how to do that. Sorry, I'm relatively new to email certs. (https certs give me none of these troubles! :-) ) Thanks in advance, Tom Limoncelli
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9C51062C-E0E9-11D8-B4EB-000D93C2342A>