[Dovecot] SSL Certificate Anomalies with latest code changes
Thomas Leuxner
tlx at leuxner.net
Thu Apr 12 11:41:52 EEST 2012
On Thu, Apr 12, 2012 at 11:35:48AM +0300, Timo Sirainen wrote:
> On 12.4.2012, at 11.33, Thomas Leuxner wrote:
>
> > On Thu, Apr 12, 2012 at 11:17:50AM +0300, Timo Sirainen wrote:
> >> But do you keep your intermediate cert in ssl_ca file or ssl_cert file?
> >
> > Separate. Root and intermediate are in ssl_ca:
>
> The documentation tells to put the intermediary to ssl_cert though. I didn't even know it worked in ssl_ca. But I guess I won't intentionally break it..
Hmmm. I did emulate Thawte instructions though:
https://search.thawte.com/support/ssl-digital-certificates/index?page=content&id=SO15464&actp=LIST&viewlocale=en_US
https://search.thawte.com/library/VERISIGN/ALL_OTHER/thawte%20ca/SSL123_CA_Bundle.pem
[...]
SSLCertificateFile /usr/local/ssl/crt/domainname.crt
SSLCertificateKeyFile /usr/local/ssl/private/server.key
SSLCACertificateFile /usr/local/ssl/crt/cabundle.crt
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://dovecot.org/pipermail/dovecot/attachments/20120412/70300cd0/attachment-0004.bin>
More information about the dovecot
mailing list