summaryrefslogtreecommitdiff
path: root/localmkmailcerts
blob: 7b5e3b4dacfcd0b19d9c275c049cb88568c77def (plain) 
    

  1. #!/bin/sh
    2. 

  2. #
    3. 

  3. # /usr/local/sbin/localmkmailcerts
    4. 

  4. # Copyright 2001-2002 Jonas Smedegaard <dr@jones.dk>
    5. 

  5. #
    6. 

  6. # $Id: localmkmailcerts,v 1.1 2002-03-07 16:22:51 jonas Exp $
    7. 

  7. #
    8. 

  8. # Generate certificates for mail servers
    9. 

  9. # Based on uw-imapd-ssl post-install script
    10. 

  10. #
    11. 

  11. 

  12. CWD=`pwd`
    13. 

  13. PATH=$PATH:/usr/bin/ssl
    14. 

  14. COUNTRY='.'
    15. 

  15. STATE='.'
    16. 

  16. LOCALITY='.'
    17. 

  17. DOMAINNAME=`hostname -d`
    18. 

  18. #HOSTNAME=`hostname -s`
    19. 

  19. HOSTNAME="mail.$DOMAINNAME"
    20. 

  20. ISSUER="postmaster@$DOMAINNAME"
    21. 

  21. DAYS2EXPIRE=365
    22. 

  22. DAEMONS="imapd ipop3d"
    23. 

  23. 

  24. cd /etc/ssl/certs
    25. 

  25. for DAEMON in $DAEMONS; do
    26. 

  26.     if [ -f $DAEMON.pem ]; then
    27. 

  27.         echo "You already have /etc/ssl/certs/$DAEMON.pem - ignoring certificate generation"
    28. 

  28.     else
    29. 

  29.         echo -n "Generating $DAEMON certificate..."
    30. 

  30.         openssl req -new -x509 -nodes -out $DAEMON.pem -keyout $DAEMON.pem -days $DAYS2EXPIRE > /dev/null 2>&1 <<+
    31. 

  31. $COUNTRY
    32. 

  32. $STATE
    33. 

  33. $LOCALITY
    34. 

  34. $HOSTNAME
    35. 

  35. $HOSTNAME
    36. 

  36. $HOSTNAME
    37. 

  37. $ISSUER
    38. 

  38. +
    39. 

  39.         ln -sf $DAEMON.pem `openssl x509 -noout -hash < $DAEMON.pem`.0
    40. 

  40.         echo "Done!"
    41. 

  41.     fi
    42. 

  42. 

  43.     chown root.root /etc/ssl/certs/$DAEMON.pem
    44. 

  44.     chmod 0640 /etc/ssl/certs/$DAEMON.pem
    45. 

  45. done
    46. 

  46. 

  47. cd $CWD
    48.
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-20 20:40:23 +0000