Hi ,
I would like to know the process to follow issuing certificates for my qmail server. Presently we are using self signed certificates in pem format.
ls -al /var/qmail/control/*.pem
lrwxrwxrwx 1 root root 33 May 20 2017 /var/qmail/control/clientcert.pem -> /var/qmail/control/servercert.pem
-rw------- 1 vpopmail vchkpw 245 Jan 15 05:03 /var/qmail/control/dh1024.pem
-rw------- 1 vpopmail vchkpw 156 Jan 15 05:03 /var/qmail/control/dh512.pem
-rw------- 1 vpopmail vchkpw 493 Jan 15 05:03 /var/qmail/control/rsa512.pem
-rw-r----- 1 vpopmail vchkpw 3176 May 20 2017 /var/qmail/control/servercert.pem
I have used letsencrypt before but for a website, so I am little confused how to go about it to adapt in qmail. Normally for a site it creates two certificates
ssl_certificate /etc/letsencrypt/live/domain.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/domain.com/privkey.pem;
Over here fullchain.pem can be linked as servercert.pem and clientcert.pem. Would that be right? Any other things I need to be carefull about or lookout for? Any pointers would be great.
Regards,
Neville