Code: Select all
-- snip --
MailScanner starting ...
MailScanner started with process id 17961
Generating new, more secure, self-signed cert with common name smtp.libertypumps
.com, for use with Postfix, Apache, and Webmin
Generating a 4096 bit RSA private key
................................................................................
........................................................++
......................................++
writing new private key to 'rsa_smtpd.pem'
-- snip --
Code: Select all
echo -e "Generating new, more secure, self-signed cert with common name $MyName, for use with Postfix, Apache, and Webmin"
openssl req -new -x509 -newkey rsa:4096 -nodes -out rsa_smtpd.pem -keyout rsa_smtpd.pem -days 3650 -sha256 -subj "/C=$CountryCode/O=$OrgName/CN=$MyName"
sed -i "/^smtp_tls_CAfile/ c\smtp_tls_CAfile = \/etc\/postfix\/ssl\/rsa_smtpd.pem" /etc/postfix/main.cf
sed -i "/^smtpd_tls_key_file/ c\smtpd_tls_key_file = \/etc\/postfix\/ssl\/rsa_smtpd.pem" /etc/postfix/main.cf
sed -i "/^smtpd_tls_cert_file/ c\smtpd_tls_cert_file = \/etc\/postfix\/ssl\/rsa_smtpd.pem" /etc/postfix/main.cf
sed -i "/^smtpd_tls_CAfile/ c\smtpd_tls_CAfile = \/etc\/postfix\/ssl\/rsa_smtpd.pem" /etc/postfix/main.cf
mkdir /etc/pki/tls/backup
mv /etc/pki/tls/certs/localhost.crt /etc/pki/tls/backup
mv /etc/pki/tls/private/localhost.key /etc/pki/tls/backup
#mv /etc/pki/tls/certs/server-chain.crt /etc/pki/tls/backup
ln -s /etc/postfix/ssl/rsa_smtpd.pem /etc/pki/tls/certs/localhost.crt
ln -s /etc/postfix/ssl/rsa_smtpd.pem /etc/pki/tls/private/localhost.key
ln -s /etc/postfix/ssl/rsa_smtpd.pem /etc/pki/tls/certs/server-chain.crt