Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 2 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 7th November 2005, 18:26
n2s n2s is offline
Junior Member
 
Join Date: Sep 2005
Posts: 11
Thanks: 0
Thanked 0 Times in 0 Posts
Default Courier-IMAP/Courier-POP3 SSL-Certificates

Hi all,

I still have some newbie questions. As far as I understood, IMAP/POP uses default certificates for a secure connection (signed to localhost). How do I create new ones (using Suse 9.3) belonging to mydomain.tld to avoid warnings from email clients?

Thanks in advance, specially to Falko and Till for their great work! It would never be possible for me to set up my server so fast without your howto and ISPConfig .
n2s

P.s.: There is a security update for ClamAV, is there a (easy) way I upgrade the version that comes with ISPConfig?
Reply With Quote
Sponsored Links
  #2  
Old 8th November 2005, 09:49
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,721 Times in 2,562 Posts
Default

Quote:
Originally Posted by n2s
Hi all,

I still have some newbie questions. As far as I understood, IMAP/POP uses default certificates for a secure connection (signed to localhost). How do I create new ones (using Suse 9.3) belonging to mydomain.tld to avoid warnings from email clients?
Which POP3/IMAP server do you use? Is it Courier?

Quote:
Originally Posted by n2s
P.s.: There is a security update for ClamAV, is there a (easy) way I upgrade the version that comes with ISPConfig?
This will be in the next ISPConfig release, it's already in the SVN version.
But if you don't want to wait, then unpack the ISPConfig sources and have a look at the script install_ispconfig/compile_aps/compile. There you find the instructions on how to compile ClamAV.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #3  
Old 8th November 2005, 14:31
n2s n2s is offline
Junior Member
 
Join Date: Sep 2005
Posts: 11
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by falko
Which POP3/IMAP server do you use? Is it Courier?
Yes, Courier-IMAP/POP3 (I followed your Suse 9.3. howto). And the IMAP server uses a "automatically-generated IMAP SSL key" from the courier mail server. I don't know how I could replace these POP3/IMAP SSL certficates.
Quote:
Originally Posted by falko
This will be in the next ISPConfig release, it's already in the SVN version.
But if you don't want to wait, then unpack the ISPConfig sources and have a look at the script install_ispconfig/compile_aps/compile. There you find the instructions on how to compile ClamAV.
Thanks!
n2s
Reply With Quote
  #4  
Old 8th November 2005, 15:35
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,721 Times in 2,562 Posts
Default

Quote:
Originally Posted by n2s
Yes, Courier-IMAP/POP3 (I followed your Suse 9.3. howto). And the IMAP server uses a "automatically-generated IMAP SSL key" from the courier mail server. I don't know how I could replace these POP3/IMAP SSL certficates.
Please run
Code:
updatedb
locate courier
and post the output here so that I can see which courier-related programs are available on your system.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #5  
Old 8th November 2005, 15:56
n2s n2s is offline
Junior Member
 
Join Date: Sep 2005
Posts: 11
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by falko
Please run
Code:
updatedb
locate courier
and post the output here so that I can see which courier-related programs are available on your system.
The output from locate courier:
Code:
/etc/courier
/etc/courier/authdaemonrc
/etc/courier/authdaemonrc.dist
/etc/courier/imapd
/etc/courier/imapd-ssl
/etc/courier/imapd-ssl.dist
/etc/courier/imapd.cnf
/etc/courier/imapd.dist
/etc/courier/pop3d
/etc/courier/pop3d-ssl
/etc/courier/pop3d-ssl.dist
/etc/courier/pop3d.cnf
/etc/courier/pop3d.dist
/etc/courier/quotawarnmsg.example
/etc/init.d/courier-authdaemon
/etc/init.d/courier-imap
/etc/init.d/courier-imap-ssl
/etc/init.d/courier-pop3
/etc/init.d/courier-pop3-ssl
/etc/init.d/rc3.d/K09courier-imap
/etc/init.d/rc3.d/K09courier-imap-ssl
/etc/init.d/rc3.d/K09courier-pop3
/etc/init.d/rc3.d/K09courier-pop3-ssl
/etc/init.d/rc3.d/K10courier-authdaemon
/etc/init.d/rc3.d/S12courier-authdaemon
/etc/init.d/rc3.d/S13courier-imap
/etc/init.d/rc3.d/S13courier-imap-ssl
/etc/init.d/rc3.d/S13courier-pop3
/etc/init.d/rc3.d/S13courier-pop3-ssl
/etc/init.d/rc5.d/K09courier-imap
/etc/init.d/rc5.d/K09courier-imap-ssl
/etc/init.d/rc5.d/K09courier-pop3
/etc/init.d/rc5.d/K09courier-pop3-ssl
/etc/init.d/rc5.d/K10courier-authdaemon
/etc/init.d/rc5.d/S12courier-authdaemon
/etc/init.d/rc5.d/S13courier-imap
/etc/init.d/rc5.d/S13courier-imap-ssl
/etc/init.d/rc5.d/S13courier-pop3
/etc/init.d/rc5.d/S13courier-pop3-ssl
/home/admispconfig/ispconfig/web/phpmyadmin/libraries/fpdf/font/courier.php
/root/Maildir/courierpop3dsizelist
/usr/lib/courier-imap
/usr/lib/courier-imap/authlib
/usr/lib/courier-imap/authlib/authdaemon
/usr/lib/courier-imap/authlib/authdaemond
/usr/lib/courier-imap/authlib/authdaemond.plain
/usr/lib/courier-imap/couriertcpd
/usr/lib/courier-imap/makedatprog
/usr/sbin/courierlogger
/usr/sbin/couriertls
/usr/sbin/rccourier-authdaemon
/usr/sbin/rccourier-imap
/usr/sbin/rccourier-imap-ssl
/usr/sbin/rccourier-pop3
/usr/sbin/rccourier-pop3-ssl
/usr/share/courier-imap
/usr/share/courier-imap/configlist
/usr/share/courier-imap/configlist.ldap
/usr/share/courier-imap/imapd.pem
/usr/share/courier-imap/makeuserdb
/usr/share/courier-imap/mkimapdcert
/usr/share/courier-imap/mkpop3dcert
/usr/share/courier-imap/pop3d.pem
/usr/share/courier-imap/pw2userdb
/usr/share/courier-imap/sysconftool
/usr/share/courier-imap/userdb
/usr/share/courier-imap/vchkpw2userdb
/usr/share/doc/packages/courier-imap
/usr/share/doc/packages/courier-imap/AUTHORS
/usr/share/doc/packages/courier-imap/BUGS
/usr/share/doc/packages/courier-imap/COPYING
/usr/share/doc/packages/courier-imap/README
/usr/share/doc/packages/courier-imap/README.authdebug.html
/usr/share/doc/packages/courier-imap/README.authdebug.html.in
/usr/share/doc/packages/courier-imap/README.authmysql.html
/usr/share/doc/packages/courier-imap/README.authmysql.myownquery
/usr/share/doc/packages/courier-imap/README.authpostgres.html
/usr/share/doc/packages/courier-imap/README.imap
/usr/share/doc/packages/courier-imap/README.ldap
/usr/share/doc/packages/courier-imap/README.maildirquota
/usr/share/doc/packages/courier-imap/README.sharedfolders
/usr/share/man/man1/courierlogger.1.gz
/usr/share/man/man1/couriertcpd.1.gz
/usr/share/man/man8/courier-imapd.8.gz
/var/run/authdaemon.courier-imap
/var/run/authdaemon.courier-imap/pid
/var/run/authdaemon.courier-imap/pid.lock
/var/run/authdaemon.courier-imap/socket
/var/run/couriersslcache
Reply With Quote
  #6  
Old 8th November 2005, 19:02
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,721 Times in 2,562 Posts
Default

I guess mkimapdcert and mkpop3dcert are the commands that you have to run.

Run
Code:
man mkimapdcert
and
Code:
man mkpop3dcert
to find out how to use them.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
The Following User Says Thank You to falko For This Useful Post:
oriongr (11th April 2008)
  #7  
Old 8th November 2005, 19:41
n2s n2s is offline
Junior Member
 
Join Date: Sep 2005
Posts: 11
Thanks: 0
Thanked 0 Times in 0 Posts
Smile

Quote:
Originally Posted by falko
Run
Code:
man mkimapdcert
and
Code:
man mkpop3dcert
to find out how to use them.
Oh yes, reading man pages make life a lot easier . Actually I tried to use mkimapdcert before, but I have overlooked the .cnf files!

Everything is in order now, thanks!
Reply With Quote
  #8  
Old 16th August 2006, 16:51
wr19026 wr19026 is offline
Senior Member
 
Join Date: Jan 2006
Posts: 172
Thanks: 7
Thanked 1 Time in 1 Post
Default

So how would I go about this if I have more than one domain? What I want to do is use Courier IMAP SSL (as per the Ubuntu 6.06 Perfect Setup) with ISPConfig, and avoid that any of the mail users gets the annoying popup when connecting using Thunderbird, Outlook etc.

I'm using the mail.domain.dom logic, and would require certificates for 4 domains that I currently host.

Thanks in advance for pointing me in the right direction!
Reply With Quote
  #9  
Old 17th August 2006, 17:07
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,721 Times in 2,562 Posts
Default

Create certificates for one FQDN, something like pop.example.com or imap.example.com, and make your users use this FQDN in their email clients.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #10  
Old 28th November 2006, 21:21
tjd tjd is offline
Member
 
Join Date: May 2006
Posts: 46
Thanks: 4
Thanked 2 Times in 1 Post
 
Default generate certs for postfix-dovecot

My postfix/dovecot system (fedora 6) has much the same problems as those earlier in the thread. That is, comes up as imap.example.com, untrusted etcetera.

How to make new accurate certs for postfix-dovecot?

Thanks in advance
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
pop3 service alone is failed in "The Perfect Setup - Debian Sarge (3.1)" nandhu HOWTO-Related Questions 60 5th August 2008 15:15
ISPConfig pop3 problem mphayesuk General 21 31st October 2005 10:53
Courier IMAP - when does it delete deleted messages?? hagel Server Operation 3 18th August 2005 23:52
Unable to connect MS Outlook to pop3 nandhu HOWTO-Related Questions 1 12th August 2005 18:06


All times are GMT +2. The time now is 16:30.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.