Linux-Bulgaria.ORG
навигация

 

начало

пощенски списък

архив на групата

семинари ...

документи

как да ...

 

 

Предишно писмо Следващо писмо Предишно по тема Следващо по тема По Дата По тема (thread)

Re: lug-bg: TLS + MTA (malko teoria + praktika)

  • Subject: Re: lug-bg: TLS + MTA (malko teoria + praktika)
  • From: vlk@email.domain.hidden (Vesselin Kolev)
  • Date: Thu, 13 Mar 2003 15:00:21 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Oshte malko da prodylzha. 

On Thursday 13 Mar 2003 12:20, Dancho Mitev wrote:
<em class="quotelev1">> Zdrasti,
<em class="quotelev1">> Temata i na men mi e mnogo interesna.
<em class="quotelev1">> Imam edin - dwa wyprosa:

Mezhdu drugoto se usetih, che sega shte zavaliat vyprosi
kak da si samopopdishem certificata. I za da ne otgovoriam
lichno na vseki, dopisvam tova kato prodylzhenie na tozi
thread.

Predi vsichko e nuzhno da imate instaliran openssl. Zhelateno
e posledna versia. Dobre e s neia da ste si compilirali i 
sendmail ili dr. MTA kakvoto polzvate za poddryzhka na
STARTTLS.

Lokiraite programata s 

which openssl

Primerno pri men e v /usr/bin/

<p>Stypka 1. Da si generirame secret key

openssl genrsa 1024 > host.key

Taka shte si generirate 1024 bitov kliuch po standart X.509

<p>Stypka 2. Generirane na komplementaren kliuch (public key)

openssl req -new -x509 -nodes -sha1 -days 365 -key host.key > host.cert

Pri generiraneto shte poluchite vyprosi za popylvane na poletata s
danni za pritezhatelia. Primerno az sym dal slednite danni

Country Name (2 letter code) []:BG
State or Province Name (full name) []:Sofia
Locality Name (eg, city) []:Sofia
Organization Name (eg, company) []:LCPE, University of Sofia
Organizational Unit Name (eg, section) []:
Common Name (eg, YOUR name) []:lcpe.uni-sofia.bg
Email Address []:vlk_at_lcpe.uni-sofia.bg

Stypka 3. Zapazvame informaciata za kliucha v otdelen file za
byrzo izvlichane pri nuzhda:

openssl x509 -noout -fingerprint -text < host.cert > host.info

Stypka 4. Syzdavame faila sys sertifikata:

cat host.cert host.key > host.pem
chmod 400 host.pem

i go pravim chitaem samo za root i nikoi drug.

Sled tova host.pem mozhete da kopirate vyv faila sendmail.pem

cat host.pem > sendmail.pem

ili v apache.pem i t.n....

   Mislia, che s tova stana iasno..

     Pozdravi
        Vesselin Kolev
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+cIDs+48lZPXaa+MRApwgAKDSdP+NXSqwB84yyEoZ1+2dxzxhpQCg3SaV
rIPY8m6ZLj1AVWjDwKdlJXE=
=zp5P
-----END PGP SIGNATURE-----

============================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
============================================================================

 
наши приятели

 

линукс за българи
http://linux-bg.org

FSA-BG
http://fsa-bg.org

OpenFest
http://openfest.org

FreeBSD BG
http://bg-freebsd.org

KDE-BG
http://kde.fsa-bg.org/

Gnome-BG
http://gnome.cult.bg/

проект OpenFMI
http://openfmi.net

NetField Forum
http://netField.ludost.net/forum/

 

 

Linux-Bulgaria.ORG

Mailing list messages are © Copyright their authors.