HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials - View Single Post - Securing Your ISPConfig 3 Installation With A Free Class1 SSL Certificate From StartS

Woodsman · #1 25th March 2012, 17:39

There are a few problem areas when it comes to Fedora 15 and ISPConfig 3.0.4.

Error is Apache 2 Can not be found

There is no file directory "/etc/apache2/sites-available/ispconfig.vhost" on the system.

Code:

Securing Your ISPConfig 3 Installation With A Free Class1 SSL Certificate From StartSSL - Page 2
4 ISPConfig Interface (Apache2)
If you use ISPConfig 3 with Apache, open /etc/apache2/sites-available/ispconfig.vhost...

vi /etc/apache2/sites-available/ispconfig.vhost

... and add the line SSLCertificateChainFile /usr/local/ispconfig/interface/ssl/startssl.sub.class1.server.ca.crt to the # SSL Configuration section (please be aware that you have to re-add that line whenever you update ISPConfig!):

[...]
  # SSL Configuration
  SSLEngine On
  SSLCertificateFile /usr/local/ispconfig/interface/ssl/ispserver.crt
  SSLCertificateKeyFile /usr/local/ispconfig/interface/ssl/ispserver.key
  ## must be re-added after an ISPConfig update!!!
  SSLCertificateChainFile /usr/local/ispconfig/interface/ssl/startssl.sub.class1.server.ca.crt
[...] 

(Adjust this if you use a Class2 certificate.)

Restart Apache afterwards:

/etc/init.d/apache2 restart

There is no directory file "/etc/courier/"

Code:

8 Courier
Create backups of /etc/courier/imapd.pem and /etc/courier/pop3d.pem... 

mv /etc/courier/imapd.pem /etc/courier/imapd.pem.bak
mv /etc/courier/pop3d.pem /etc/courier/pop3d.pem.bak

... and then symlink them to /usr/local/ispconfig/interface/ssl/ispserver.pem:

ln -s /usr/local/ispconfig/interface/ssl/ispserver.pem /etc/courier/imapd.pem
ln -s /usr/local/ispconfig/interface/ssl/ispserver.pem /etc/courier/pop3d.pem

Restart Courier afterwards:

/etc/init.d/courier-imap-ssl stop
/etc/init.d/courier-imap-ssl start
/etc/init.d/courier-pop-ssl stop
/etc/init.d/courier-pop-ssl start

Next
bash: /etc/init.d/pure-ftpd-mysql: No such file or directory

Code:

9 PureFTPd
Create a backup of /etc/ssl/private/pure-ftpd.pem...

cd /etc/ssl/private/
mv pure-ftpd.pem pure-ftpd.pem_bak

... and create a symlink to /usr/local/ispconfig/interface/ssl/ispserver.pem:

ln -s /usr/local/ispconfig/interface/ssl/ispserver.pem pure-ftpd.pem

Restart PureFTPd afterwards:

/etc/init.d/pure-ftpd-mysql restart

The end resutlts were that I had to go back to

2 Creating A Certificate Signing Request (CSR)

and recreate new certs in order to get my sites to show again...

Any ideas for those of us using Fedora 15 with ISPConfig 3.0.4?