Re: Using the SSL snakeoil certificate
On Thu, Jul 20, 2006 at 11:24:34AM +0200, Martin Schulze wrote:
> For example:
>
> Dovecot uses </etc/ssl/certs/dovecot.pem>.
>
> This is a symbolic link to </etc/ssl/certs/ssl-cert-snakeoil.pem> if
> the above file or link does not exist during configuration of
> dovecot.
>
> That way, the admin can easily replace the symlink with a real
> certificate if they want per-service certificates.
>
> If, however, they want to have one real certificate for everything,
> they can replace the snakeoil certificate like Martin Pitt proposed.
Sorry if I misunderstand something, but is it okay to call it snakeoil
if it is real certificate? I like to say that the symbolic links for
per-service certificate shouldn't point to something called snake-oil.
Just my opinion.
Reply to: