Setting up good certs for ports/mail/imap-uw?
Chuck Swiger
cswiger at mac.com
Fri Jul 30 12:23:59 PDT 2004
Tom Limoncelli wrote:
> The instructions for ports/mail/imap-uw tell you that "make cert"
> generates certs that are self-signed and warns you that it is better to
> get "real" certs but doesn't explain how to do that. Any suggestions?
"real" certs are ones signed by a well-known registrar like Verisign, EnTrust,
Thawte, etc. To get one, you generate a CSR (certificate signing request) as
done in "make cert", only you send that CSR to the registrar and pay them to
sign it, very much like one does when getting a "real" SSL cert to do HTTPS.
There is nothing magic about the well-known registrars, except that their CA
certificates already ship as pre-trusted with the email clients and web
browsers that most people use.
--
-Chuck
More information about the freebsd-questions
mailing list