This shows you the differences between two versions of the page.
cacert [2014/11/24 01:14] 0.0.0.0 created |
cacert [2014/11/24 01:44] ben |
||
---|---|---|---|
Line 3: | Line 3: | ||
===== CACert.org Certificates ===== | ===== CACert.org Certificates ===== | ||
Generate the private key | Generate the private key | ||
- | {{Command|<source lang="bash"> | + | <code bash> |
openssl genrsa -out domain.sihnon.net.key 1024 | openssl genrsa -out domain.sihnon.net.key 1024 | ||
- | </source>}} | + | </code> |
Generate the Certificate Signing Request | Generate the Certificate Signing Request | ||
- | {{Command|<source lang="bash"> | + | <code bash> |
openssl req -new -key domain.sihnon.net.key -out domain.sihnon.net.csr | openssl req -new -key domain.sihnon.net.key -out domain.sihnon.net.csr | ||
- | </source>}} | + | </code> |
Send the CSR to cacert.org, and cat the result into domain.sihnon.net.pem. | Send the CSR to cacert.org, and cat the result into domain.sihnon.net.pem. | ||
Line 16: | Line 16: | ||
Set up the server to use the .key and .pem files. | Set up the server to use the .key and .pem files. | ||
- | |||
- | ===== Using certificates in courier-imap ===== | ||
- | Courier expects the key and the certificate in the same file, along with some Diffie-Hellman parameters | ||
- | {{Command|< | ||
- | cat domain.sihnon.net.key domain.sihnon.net.pem > domain.sihnon.net.courier.pem | ||
- | openssl gendh >> domain.sihnon.net.courier.pem | ||
- | </ |