dovecot, postfix, pure-ftpd, ispconfig web panel lets encrypt certificate

Discussion in 'Installation/Configuration' started by Poliman, Feb 21, 2017.

  1. Poliman

    Poliman Member

    I would like to know how add/install Let's Encrypt SSL Certificate to dovecot, postfix, pureftpd software and for ISPconfig3 web panel.
     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

  3. Poliman

    Poliman Member

    Thank Till. I will check this.

    PS
    One more thing. While I was installing ISP panel I chose option to create ssl certificate. Does this certificate is something like global one - for dovecot, postfix, pureftpd? I am asking, because I have tests (from ssllabs) of my server and there are:
    17. SSL Certificate - Self-Signed Certificate port 465/tcp over SSL
    18. SSL Certificate - Improper Usage Vulnerability port 465/tcp over SSL
    19. SSL Certificate - Signature Verification Failed Vulnerability port 465/tcp over SSL
    21. SSL Certificate - Self-Signed Certificate port 21/tcp over SSL
    22. SSL Certificate - Improper Usage Vulnerability port 21/tcp over SSL
    23. SSL Certificate - Signature Verification Failed Vulnerability port 21/tcp over SSL
    24. SSL Certificate - Self-Signed Certificate port 110/tcp over SSL
    25. SSL Certificate - Improper Usage Vulnerability port 110/tcp over SSL
    26. SSL Certificate - Signature Verification Failed Vulnerability port 110/tcp over SSL
    27. SSL Certificate - Self-Signed Certificate port 143/tcp over SSL
    28. SSL Certificate - Improper Usage Vulnerability port 143/tcp over SSL
    29. SSL Certificate - Signature Verification Failed Vulnerability port 143/tcp over SSL
    30. SSL Certificate - Self-Signed Certificate port 25/tcp over SSL
    31. SSL Certificate - Improper Usage Vulnerability port 25/tcp over SSL
    32. SSL Certificate - Signature Verification Failed Vulnerability port 25/tcp over SSL
    33. SSL Certificate - Self-Signed Certificate port 995/tcp over SSL
    34. SSL Certificate - Improper Usage Vulnerability port 995/tcp over SSL
    35. SSL Certificate - Signature Verification Failed Vulnerability port 995/tcp over SSL
    36. SSL Certificate - Self-Signed Certificate port 993/tcp over SSL
    37. SSL Certificate - Improper Usage Vulnerability port 993/tcp over SSL
    38. SSL Certificate - Signature Verification Failed Vulnerability port 993/tcp over SSL
    39. SSL Certificate - Self-Signed Certificate port 587/tcp over SSL
    40. SSL Certificate - Improper Usage Vulnerability port 587/tcp over SSL
    41. SSL Certificate - Signature Verification Failed Vulnerability port 587/tcp over SSL

    and each of above require normal ssl cert not self-signed (exactly "SOLUTION: Please install a server certificate with correct usage." and in RESULTS part I have details of my self-signed certificate) and there is many different ports used by services I mentioned on the begin of this post.
     
    Last edited: Feb 21, 2017
  4. sjau

    sjau Local Meanie Moderator

    No, by default only ssl certs for the websites are created with Let's Encrypt.

    You can create manually a letsencrypt certificate for ISPConfig interface, postfix, dovecot etc....

    I have created a little howto for ISPC, postfix, dovecot using acme.sh as le client with DNS-01 challenge: https://www.howtoforge.com/communit...utomated-dns-01-challenge-for-ispc-3-1.74850/

    Here's a howto using the certbot client and nginx server: https://www.howtoforge.com/community/threads/securing-your-server-with-lets-encrypt.75554/
     
  5. ahrasis

    ahrasis Member

    Poliman, the one you created while installing or updating ISPC is a self-signed certificate by openssl. If you need a proper certificate (signed) by LE, you can either follow the link that till or sjau suggested above. Or you can get from it from other SSL provider/seller.
     
  6. Poliman

    Poliman Member

    Thank You people, I will check this.
     

Share This Page