andreas/kopano-docker
1
0
Fork 0
Code Issues 8 Pull Requests Packages Projects 1 Releases Wiki Activity
Files
main
kopano-docker/ssl/create-postfix-certs
andreas 991905dd4f stabilization intermediate check-in
2023-10-25 19:17:16 +00:00

15 lines
772 B
Bash
Raw Permalink Blame History

#!/usr/bin/bash
export CN=$1
./create-key $CN
pushd certs
# The default algorithm is sha256 with Postfix ≥ 3.6 and the compatibility_level set to 3.6 or higher.
# With Postfix ≤ 3.5, the default algorithm is md5.
# https://www.postfix.org/postconf.5.html#relay_clientcerts
openssl x509 -in $CN.crt -noout -pubkey | openssl pkey -pubin -outform DER | openssl dgst -md5 -c | ( read D FP; echo $FP $CN ) >>relay_clientcerts
cp $CN.key ~/kopano-docker/etc-$CN/ssl/private
cat $CN.key $CN.crt kopano-ca.crt >~/kopano-docker/etc-$CN/ssl/private/$CN-key-certs.pem
# https://ubuntu.com/server/docs/security-trust-store
cp kopano-ca.crt ~/kopano-docker/etc-$CN/ssl/usr-local-share-ca-certificates
cat kopano-ca.crt $CN.crt >~/kopano-docker/etc-$CN/ssl/$CN-cert-chain.pem
popd
Reference in New Issue View Git Blame Copy Permalink