Page 1 of 2
Where to find all SSL Certificates
Posted: Wed Dec 04, 2013 5:03 pm
by jhewit
Where can I find the control panel certificate?
Where can I find the VSFTPD certificate?
Where can I find the EXIM certificates?
Thanks ahead of the time, just trying to get SSL certs installed on them.
Re: Where to find all SSL Certificates
Posted: Thu Dec 05, 2013 6:01 pm
by skid
Control panel certificate is here /usr/local/vesta/ssl/
Exim and Dovecot on a RHEL-like systems use the /etc/pki/tls/certs/exim.pem
Exim on Debian and Ubuntu has no ssl configured.
Dovecot on Debian and Ubuntu use the /etc/ssl/private/dovecot.pem
Vsftpd has no certificate by default.
Re: Where to find all SSL Certificates
Posted: Thu Dec 05, 2013 7:05 pm
by jhewit
skid wrote:Control panel certificate is here /usr/local/vesta/ssl/
Exim and Dovecot on a RHEL-like systems use the /etc/pki/tls/certs/exim.pem
Exim on Debian and Ubuntu has no ssl configured.
Dovecot on Debian and Ubuntu use the /etc/ssl/private/dovecot.pem
Vsftpd has no certificate by default.
Thanks for the prompt response :), that answered my questions entirely.
Re: Where to find all SSL Certificates
Posted: Sun Dec 22, 2013 9:42 am
by Kaurer
Hello,
Then, to use IMAP over SSL/STARTTLS, I can use the certificates from /etc/ssl/private/?
Possible settings for /etc/dovecot/dovecot.conf :
protocols = imap imaps pop3 pop3s
listen = *, ::
base_dir = /var/run/dovecot/
!include conf.d/*.conf
ssl = yes
ssl_cert_file = /etc/ssl/private/dovecot.pem
ssl_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
Greetings.
Re: Where to find all SSL Certificates
Posted: Tue Dec 24, 2013 2:35 pm
by skid
Yes, that's right.
Re: Where to find all SSL Certificates
Posted: Wed Dec 25, 2013 10:02 pm
by Kaurer
Great, thank you!
Re: Where to find all SSL Certificates
Posted: Thu Jan 02, 2014 3:00 pm
by jhewit
Ok this may sound like a few really stupid questions but I'm lost and need some help...
1. How do I set a DKIM signature so that the SMTP is friendly with G-MAIL and all mail doesn't go directly to SPAM on every G-MAIL account?
2. I replaced the exim.pem at /etc/pki/tls/certs/exim.pem , however now it is possible to connect to dovecot or exim. So my question is why? And what is the localhost.crt in this director for? And the ca_bundle.crt? As that was not in the list of CRT's you mentioned above.
Thanks to all for any assistance.
Re: Where to find all SSL Certificates
Posted: Thu Jan 02, 2014 3:27 pm
by jhewit
Kaurer wrote:Hello,
Then, to use IMAP over SSL/STARTTLS, I can use the certificates from /etc/ssl/private/?
Possible settings for /etc/dovecto/dovecot.conf :
protocols = imap imaps pop3 pop3s
listen = *, ::
base_dir = /var/run/dovecot/
!include conf.d/*.conf
ssl = yes
ssl_cert_file = /etc/ssl/private/dovecot.pem
ssl_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
Greetings.
Following these steps fixed the connectivity issue with the .pem file. But can anyone answer the question about the other crt files in this folder? And how to set a DKIM signature so that all mail sent to external g-mail accounts is not considered spam?
Thanks again.
Re: Where to find all SSL Certificates
Posted: Thu Jan 02, 2014 3:42 pm
by jhewit
Correction SMTP still fails when attempting to connect, unless using a non SSL connection. What configurations would we need to change in exim to make it function properly? Dovecot is working perfectly.
Re: Where to find all SSL Certificates
Posted: Thu Jan 02, 2014 4:35 pm
by Kaurer
jhewit wrote:Correction SMTP still fails when attempting to connect, unless using a non SSL connection. What configurations would we need to change in exim to make it function properly? Dovecot is working perfectly.
@jhewit, follow these steps:
Configuring Exim
http://support.eidolonhost.com/wiki/Ves ... re_VestaCP
I hope it works for you.