[lug] Apache SSL/certs
hugh at vecna.com
Mon Mar 12 08:27:35 MST 2001
I recently setup an imap cert and called imapd.pem and then linked
ipop3d.pem to it (based on instructions in the WashU imap
documentation). My understanding was that the imapd and ipop3d would
then use the same certificate.
I'm guessing that the names of the links are important for internal
processing but that they use the cert that they are linked to.
These comments are based on what I noted above and nothing else (i.e. I
have no idea if I'm right or not).
"D. Stimits" wrote:
> I once asked this on the apache newsgroup, and never had an answer,
> maybe someone here can say. When installing Apache with SSL, such as is
> available by default in the RH 7.1 beta, it comes with some sample certs
> and a signing cert, the snakeoil stuff. Information for creating new
> certs is fairly clear, but one thing I wonder about is that none of
> these certs are used directly. All of them have symbolic links to them,
> which appear somewhat random, and designed somewhat like a key in their
> naming. Are these symbolic link names unique to a given Apache compile?
> Or are they unique to keys/certs? If I generate new keys, is it enough
> that I keep the same sym links but have them point to my new certs? FYI,
> this server is internal network only, it is firewalled from the outside,
> but it is useful for testing ideas on before putting them up on a public
> D. Stimits, stimits at idcomm.com
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
More information about the LUG