Initial revision

author: Jonas Smedegaard <dr@jones.dk> 2001-12-12 19:52:40 +0000
committer: Jonas Smedegaard <dr@jones.dk> 2001-12-12 19:52:40 +0000
commit: c81b7f986867db292d62a1757123723b5ef66518 (patch)
tree: a217cf2f481ab7b3099ef76b519a4cc8e1786096 /mkmailcerts
1 files changed, 38 insertions, 0 deletions
diff --git a/mkmailcerts b/mkmailcerts
new file mode 100755
index 0000000..7a80eb2
--- /dev/null
+++ b/mkmailcerts
@@ -0,0 +1,38 @@
+#!/bin/sh
+
+CWD=`pwd`
+PATH=$PATH:/usr/bin/ssl
+COUNTRY='.'
+STATE='.'
+LOCALITY='.'
+DOMAINNAME=`hostname -d`
+#HOSTNAME=`hostname -s`
+HOSTNAME="mail.$DOMAINNAME"
+ISSUER="postmaster@$DOMAINNAME"
+DAYS2EXPIRE=365
+DAEMONS="imapd ipop3d"
+
+cd /etc/ssl/certs
+for DAEMON in $DAEMONS; do
+	if [ -f $DAEMON.pem ]; then
+		echo "You already have /etc/ssl/certs/$DAEMON.pem - ignoring certificate generation"
+	else
+		echo -n "Generating $DAEMON certificate..."
+		openssl req -new -x509 -nodes -out $DAEMON.pem -keyout $DAEMON.pem -days $DAYS2EXPIRE > /dev/null 2>&1 <<+
+$COUNTRY
+$STATE
+$LOCALITY
+$HOSTNAME
+$HOSTNAME
+$HOSTNAME
+$ISSUER
++
+		ln -sf $DAEMON.pem `openssl x509 -noout -hash < $DAEMON.pem`.0
+		echo "Done!"
+	fi
+
+	chown root.root /etc/ssl/certs/$DAEMON.pem
+	chmod 0640 /etc/ssl/certs/$DAEMON.pem
+done
+
+cd $CWD
author	Jonas Smedegaard <dr@jones.dk>	2001-12-12 19:52:40 +0000
committer	Jonas Smedegaard <dr@jones.dk>	2001-12-12 19:52:40 +0000
commit	c81b7f986867db292d62a1757123723b5ef66518 (patch)
tree	a217cf2f481ab7b3099ef76b519a4cc8e1786096 /mkmailcerts