Created
April 3, 2023 22:39
-
-
Save dan-dm/acf757dd6002b406c556c8376de3c868 to your computer and use it in GitHub Desktop.
dovecot SSL configuration script
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/sh | |
# Generates a self-signed certificate. | |
# Edit dovecot-openssl.cnf before running this. | |
umask 077 | |
OPENSSL=${OPENSSL-openssl} | |
SSLDIR=${SSLDIR-/etc/ssl} | |
OPENSSLCONFIG=${OPENSSLCONFIG-dovecot-openssl.cnf} | |
CERTDIR=$SSLDIR/certs | |
KEYDIR=$SSLDIR/private | |
CERTFILE=$CERTDIR/dovecot.pem | |
KEYFILE=$KEYDIR/dovecot.pem | |
if [ ! -d $CERTDIR ]; then | |
echo "$CERTDIR directory doesn't exist" | |
exit 1 | |
fi | |
if [ ! -d $KEYDIR ]; then | |
echo "$KEYDIR directory doesn't exist" | |
exit 1 | |
fi | |
if [ -f $CERTFILE ]; then | |
echo "$CERTFILE already exists, won't overwrite" | |
exit 1 | |
fi | |
if [ -f $KEYFILE ]; then | |
echo "$KEYFILE already exists, won't overwrite" | |
exit 1 | |
fi | |
$OPENSSL req -new -x509 -nodes -config $OPENSSLCONFIG -out $CERTFILE -keyout $KEYFILE -days 365 || exit 2 | |
chmod 0600 $KEYFILE | |
echo | |
$OPENSSL x509 -subject -fingerprint -noout -in $CERTFILE || exit 2 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment