From 85d7610aadf1be8e4d1bece0a5ad5d63ccd3089c Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Thu, 7 Mar 2002 16:22:51 +0000
Subject: Rename files and add/improve descriptive headers.

---
 localmkmailcerts | 47 +++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 47 insertions(+)
 create mode 100755 localmkmailcerts

(limited to 'localmkmailcerts')

diff --git a/localmkmailcerts b/localmkmailcerts
new file mode 100755
index 0000000..7b5e3b4
--- /dev/null
+++ b/localmkmailcerts
@@ -0,0 +1,47 @@
+#!/bin/sh
+#
+# /usr/local/sbin/localmkmailcerts
+# Copyright 2001-2002 Jonas Smedegaard <dr@jones.dk>
+#
+# $Id: localmkmailcerts,v 1.1 2002-03-07 16:22:51 jonas Exp $
+#
+# Generate certificates for mail servers
+# Based on uw-imapd-ssl post-install script
+#
+
+CWD=`pwd`
+PATH=$PATH:/usr/bin/ssl
+COUNTRY='.'
+STATE='.'
+LOCALITY='.'
+DOMAINNAME=`hostname -d`
+#HOSTNAME=`hostname -s`
+HOSTNAME="mail.$DOMAINNAME"
+ISSUER="postmaster@$DOMAINNAME"
+DAYS2EXPIRE=365
+DAEMONS="imapd ipop3d"
+
+cd /etc/ssl/certs
+for DAEMON in $DAEMONS; do
+	if [ -f $DAEMON.pem ]; then
+		echo "You already have /etc/ssl/certs/$DAEMON.pem - ignoring certificate generation"
+	else
+		echo -n "Generating $DAEMON certificate..."
+		openssl req -new -x509 -nodes -out $DAEMON.pem -keyout $DAEMON.pem -days $DAYS2EXPIRE > /dev/null 2>&1 <<+
+$COUNTRY
+$STATE
+$LOCALITY
+$HOSTNAME
+$HOSTNAME
+$HOSTNAME
+$ISSUER
++
+		ln -sf $DAEMON.pem `openssl x509 -noout -hash < $DAEMON.pem`.0
+		echo "Done!"
+	fi
+
+	chown root.root /etc/ssl/certs/$DAEMON.pem
+	chmod 0640 /etc/ssl/certs/$DAEMON.pem
+done
+
+cd $CWD
-- 
cgit v1.2.3