From c81b7f986867db292d62a1757123723b5ef66518 Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Wed, 12 Dec 2001 19:52:40 +0000
Subject: Initial revision

---
 mkmailcerts | 38 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)
 create mode 100755 mkmailcerts

(limited to 'mkmailcerts')

diff --git a/mkmailcerts b/mkmailcerts
new file mode 100755
index 0000000..7a80eb2
--- /dev/null
+++ b/mkmailcerts
@@ -0,0 +1,38 @@
+#!/bin/sh
+
+CWD=`pwd`
+PATH=$PATH:/usr/bin/ssl
+COUNTRY='.'
+STATE='.'
+LOCALITY='.'
+DOMAINNAME=`hostname -d`
+#HOSTNAME=`hostname -s`
+HOSTNAME="mail.$DOMAINNAME"
+ISSUER="postmaster@$DOMAINNAME"
+DAYS2EXPIRE=365
+DAEMONS="imapd ipop3d"
+
+cd /etc/ssl/certs
+for DAEMON in $DAEMONS; do
+	if [ -f $DAEMON.pem ]; then
+		echo "You already have /etc/ssl/certs/$DAEMON.pem - ignoring certificate generation"
+	else
+		echo -n "Generating $DAEMON certificate..."
+		openssl req -new -x509 -nodes -out $DAEMON.pem -keyout $DAEMON.pem -days $DAYS2EXPIRE > /dev/null 2>&1 <<+
+$COUNTRY
+$STATE
+$LOCALITY
+$HOSTNAME
+$HOSTNAME
+$HOSTNAME
+$ISSUER
++
+		ln -sf $DAEMON.pem `openssl x509 -noout -hash < $DAEMON.pem`.0
+		echo "Done!"
+	fi
+
+	chown root.root /etc/ssl/certs/$DAEMON.pem
+	chmod 0640 /etc/ssl/certs/$DAEMON.pem
+done
+
+cd $CWD
-- 
cgit v1.2.3