summaryrefslogtreecommitdiff
path: root/mkmailcerts
blob: 7a80eb21be724f1a03e4947845ca2a758bcec2c1 (plain) 
    

  1. #!/bin/sh
    2. 

  2. 

  3. CWD=`pwd`
    4. 

  4. PATH=$PATH:/usr/bin/ssl
    5. 

  5. COUNTRY='.'
    6. 

  6. STATE='.'
    7. 

  7. LOCALITY='.'
    8. 

  8. DOMAINNAME=`hostname -d`
    9. 

  9. #HOSTNAME=`hostname -s`
    10. 

  10. HOSTNAME="mail.$DOMAINNAME"
    11. 

  11. ISSUER="postmaster@$DOMAINNAME"
    12. 

  12. DAYS2EXPIRE=365
    13. 

  13. DAEMONS="imapd ipop3d"
    14. 

  14. 

  15. cd /etc/ssl/certs
    16. 

  16. for DAEMON in $DAEMONS; do
    17. 

  17.     if [ -f $DAEMON.pem ]; then
    18. 

  18.         echo "You already have /etc/ssl/certs/$DAEMON.pem - ignoring certificate generation"
    19. 

  19.     else
    20. 

  20.         echo -n "Generating $DAEMON certificate..."
    21. 

  21.         openssl req -new -x509 -nodes -out $DAEMON.pem -keyout $DAEMON.pem -days $DAYS2EXPIRE > /dev/null 2>&1 <<+
    22. 

  22. $COUNTRY
    23. 

  23. $STATE
    24. 

  24. $LOCALITY
    25. 

  25. $HOSTNAME
    26. 

  26. $HOSTNAME
    27. 

  27. $HOSTNAME
    28. 

  28. $ISSUER
    29. 

  29. +
    30. 

  30.         ln -sf $DAEMON.pem `openssl x509 -noout -hash < $DAEMON.pem`.0
    31. 

  31.         echo "Done!"
    32. 

  32.     fi
    33. 

  33. 

  34.     chown root.root /etc/ssl/certs/$DAEMON.pem
    35. 

  35.     chmod 0640 /etc/ssl/certs/$DAEMON.pem
    36. 

  36. done
    37. 

  37. 

  38. cd $CWD
    39.
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-20 19:40:36 +0000