Skip to content

Commit e77915f

Browse files
author
redray
committed
changes on mail-certs
1 parent 239490b commit e77915f

File tree

3 files changed

+16
-14
lines changed

3 files changed

+16
-14
lines changed

install/dist/lib/fedora.lib.php

Lines changed: 7 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -95,8 +95,9 @@ function configure_postfix($options = '')
9595
'broken_sasl_auth_clients = yes',
9696
'smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:'.$config_dir.'/mysql-virtual_recipient.cf, reject_unauth_destination',
9797
'smtpd_use_tls = yes',
98-
'smtpd_tls_cert_file = '.$config_dir.'/smtpd.cert',
99-
'smtpd_tls_key_file = '.$config_dir.'/smtpd.key',
98+
'smtpd_tls_security_level = may',
99+
'smtpd_tls_cert_file = '.$config_dir.'/ssl/smtpd.cert',
100+
'smtpd_tls_key_file = '.$config_dir.'/ssl/smtpd.key',
100101
'transport_maps = proxy:mysql:'.$config_dir.'/mysql-virtual_transports.cf',
101102
'relay_domains = mysql:'.$config_dir.'/mysql-virtual_relaydomains.cf',
102103
'virtual_create_maildirsize = yes',
@@ -136,12 +137,12 @@ function configure_postfix($options = '')
136137

137138
if(!stristr($options,'dont-create-certs')) {
138139
//* Create the SSL certificate
139-
$command = 'cd '.$config_dir.'; '
140-
.'openssl req -new -outform PEM -out smtpd.cert -newkey rsa:2048 -nodes -keyout '
141-
.'smtpd.key -keyform PEM -days 365 -x509';
140+
$command = 'mkdir '.$config_dir.'/ssl; '
141+
.'cd '.$config_dir.'/ssl; '
142+
.'openssl req -new -outform PEM -out smtpd.cert -newkey rsa:2048 -nodes -keyout smtpd.key -keyform PEM -days 365 -x509';
142143
exec($command);
143144

144-
$command = 'chmod o= '.$config_dir.'/smtpd.key';
145+
$command = 'chmod o= '.$config_dir.'/ssl/smtpd.key';
145146
caselog($command.' &> /dev/null', __FILE__, __LINE__, 'EXECUTED: '.$command, 'Failed to execute the command '.$command);
146147
}
147148

install/dist/lib/opensuse.lib.php

Lines changed: 7 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -95,8 +95,9 @@ function configure_postfix($options = '')
9595
'broken_sasl_auth_clients = yes',
9696
'smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:'.$config_dir.'/mysql-virtual_recipient.cf, reject_unauth_destination',
9797
'smtpd_use_tls = yes',
98-
'smtpd_tls_cert_file = '.$config_dir.'/smtpd.cert',
99-
'smtpd_tls_key_file = '.$config_dir.'/smtpd.key',
98+
'smtpd_tls_security_level = may',
99+
'smtpd_tls_cert_file = '.$config_dir.'/ssl/smtpd.cert',
100+
'smtpd_tls_key_file = '.$config_dir.'/ssl/smtpd.key',
100101
'transport_maps = proxy:mysql:'.$config_dir.'/mysql-virtual_transports.cf',
101102
'relay_domains = mysql:'.$config_dir.'/mysql-virtual_relaydomains.cf',
102103
'virtual_create_maildirsize = yes',
@@ -136,12 +137,12 @@ function configure_postfix($options = '')
136137

137138
if(!stristr($options,'dont-create-certs')) {
138139
//* Create the SSL certificate
139-
$command = 'cd '.$config_dir.'; '
140-
.'openssl req -new -outform PEM -out smtpd.cert -newkey rsa:2048 -nodes -keyout '
141-
.'smtpd.key -keyform PEM -days 365 -x509';
140+
$command = 'mkdir '.$config_dir.'/ssl; '
141+
.'cd '.$config_dir.'/ssl; '
142+
.'openssl req -new -outform PEM -out smtpd.cert -newkey rsa:2048 -nodes -keyout smtpd.key -keyform PEM -days 365 -x509';
142143
exec($command);
143144

144-
$command = 'chmod o= '.$config_dir.'/smtpd.key';
145+
$command = 'chmod o= '.$config_dir.'/ssl/smtpd.key';
145146
caselog($command.' &> /dev/null', __FILE__, __LINE__, 'EXECUTED: '.$command, 'Failed to execute the command '.$command);
146147
}
147148

install/lib/installer_base.lib.php

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -292,6 +292,7 @@ public function configure_postfix($options = '')
292292
'broken_sasl_auth_clients = yes',
293293
'smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:'.$config_dir.'/mysql-virtual_recipient.cf, reject_unauth_destination',
294294
'smtpd_use_tls = yes',
295+
'smtpd_tls_security_level = may',
295296
'smtpd_tls_cert_file = '.$config_dir.'/ssl/smtpd.cert',
296297
'smtpd_tls_key_file = '.$config_dir.'/ssl/smtpd.key',
297298
'transport_maps = proxy:mysql:'.$config_dir.'/mysql-virtual_transports.cf',
@@ -334,8 +335,7 @@ public function configure_postfix($options = '')
334335
//* Create the SSL certificate
335336
$command = 'mkdir '.$config_dir.'/ssl; '
336337
.'cd '.$config_dir.'/ssl; '
337-
.'openssl req -new -outform PEM -out smtpd.cert -newkey rsa:2048 -nodes -keyout '
338-
.'smtpd.key -keyform PEM -days 365 -x509';
338+
.'openssl req -new -outform PEM -out smtpd.cert -newkey rsa:2048 -nodes -keyout smtpd.key -keyform PEM -days 365 -x509';
339339
exec($command);
340340

341341
$command = 'chmod o= '.$config_dir.'/ssl/smtpd.key';

0 commit comments

Comments
 (0)