cyrus and tls

Ken Murchison murch at andrew.cmu.edu
Fri May 5 07:32:39 EDT 2006


nikhil BS wrote:
> hi
> how do i setup tls on cyrus i read some howtos and ended up doing the 
> following
> 
> openssl req -new -nodes -out req.pem -keyout key.pem  
> openssl rsa -in key.pem -out new.key.pem
> openssl x509 -in req.pem -out ca-cert -req \
> -signkey new.key.pem -days 999 
> 
> mkdir /var/imap
> 
> 
> cp new.key.pem /var/imap/server.pem
> rm new.key.pem
> cat ca-cert >> /var/imap/server.pem
> 
> chown cyrus:mail /var/imap/server.pem
> chmod 600 /var/imap/server.pem # Your key should be protected
> 
> 
> echo tls_ca_file: /var/imap/server.pem >> /etc/imapd.conf
> echo tls_cert_file: /var/imap/server.pem >> /etc/imapd.conf
> echo tls_key_file: /var/imap/server.pem >> /etc/imapd.conf
> 
> 
> this got me nowhere  cyrus just hangs when i run starttls
> also i use telnet on localhost to send commands to imapd is that the 
> problem?
> what do i do?
> help please

I use the following set of tools to create my certs:

http://www.openssl.org/contrib/ssl.ca-0.1.tar.gz


-- 
Kenneth Murchison
Systems Programmer
Project Cyrus Developer/Maintainer
Carnegie Mellon University


More information about the Cyrus-devel mailing list