[Dovecot] signing dovecot certs with own Cert. Auth.

blaq b0x blaqb0x at yahoo.com
Tue Sep 20 20:19:24 EEST 2005


Hi,

I'm trying to get apache, sendmail , and dovecot to
use SSL certs signed by my own CA. I've got the apache
certs working fine. However, dovecot ( I haven't even
tried sendmail yet) doesn't seem to accept any of the
certificates that I create for it. There is a script
that comes with dovecot that creates self-signed
certificates for you but, I need certificates signed
by my own CA. I found this tutorial

http://homepage.mac.com/pauljlucas/personal/macmini/certs.html

it shows you how to create a csr for dovecot that you
can send to a CA. I signed it using CA.pl -sign.
however, the certificate isn't accepted by dovecot.
Unfortunately, dovecot doesn't log anything to maillog
at failed startup.

Just looking at the certificate contents I noticed
that the self-signed certificates don't have all kinds
of publisher information at the beginning of them like
the apache certs. So I think what I'm missing is the
difference between all the different cert types. I
know that there are pem and cert ssl cert types, at
least different extensions. Can anyone tell my what
the difference is? are the certs suitable for apache
and others for mail applications? is there a
converter? Could it be the way that I'm signing the
certificates?

Any help would be appreciated.

Thanks,
Reply With Quote 


		
__________________________________ 
Yahoo! Mail - PC Magazine Editors' Choice 2005 
http://mail.yahoo.com


More information about the dovecot mailing list