This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
startcom [2014/11/24 01:48] ben Bulk convert mediawiki code block formatting |
startcom [2014/11/24 02:11] (current) ben |
||
---|---|---|---|
Line 19: | Line 19: | ||
<code bash> | <code bash> | ||
openssl req -new -key domain.sihnon.net.key -out domain.sihnon.net.csr | openssl req -new -key domain.sihnon.net.key -out domain.sihnon.net.csr | ||
- | </code > | + | </ |
Send the CSR to cacert.org, and cat the result into domain.sihnon.net.pem | Send the CSR to cacert.org, and cat the result into domain.sihnon.net.pem | ||
Line 29: | Line 29: | ||
<code bash> | <code bash> | ||
cat sub.class2.server.startcom.crt startcom.crt > sub.class2.server.startcom.bundle.crt | cat sub.class2.server.startcom.crt startcom.crt > sub.class2.server.startcom.bundle.crt | ||
- | </code > | + | </ |
And configure apache to send the bundle along with the certificate | And configure apache to send the bundle along with the certificate | ||
Line 38: | Line 38: | ||
SSLCertificateKeyFile / | SSLCertificateKeyFile / | ||
SSLCertificateChainFile / | SSLCertificateChainFile / | ||
- | </code > | + | </ |
==== Server Name Indication ==== | ==== Server Name Indication ==== | ||
Line 47: | Line 47: | ||
# echo " | # echo " | ||
# emerge apache -av | # emerge apache -av | ||
- | </code > | + | </ |
Now, with very little effort, it is possible to set up multiple vhosts with SSL enabled as above and everything should Just Work& | Now, with very little effort, it is possible to set up multiple vhosts with SSL enabled as above and everything should Just Work& | ||
Line 57: | Line 57: | ||
smtpd_tls_cert_file = / | smtpd_tls_cert_file = / | ||
smtpd_tls_CAfile = / | smtpd_tls_CAfile = / | ||
- | </code > | + | </ |
===== Using certificates in courier-imap ===== | ===== Using certificates in courier-imap ===== | ||
Line 64: | Line 64: | ||
cat domain.sihnon.net.key domain.sihnon.net.pem > domain.sihnon.net.courier.pem | cat domain.sihnon.net.key domain.sihnon.net.pem > domain.sihnon.net.courier.pem | ||
openssl gendh >> domain.sihnon.net.courier.pem | openssl gendh >> domain.sihnon.net.courier.pem | ||
- | </code > | + | </ |
===== Certificates issued by startcom ===== | ===== Certificates issued by startcom ===== | ||
- | These certificates and corresponding private keys are stored in <tt>/ | + | These certificates and corresponding private keys are stored in '' |
* backups.sihnon.net (expires 2011-11-02) | * backups.sihnon.net (expires 2011-11-02) |