[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Using the SSL snakeoil certificate

On Thu, Jul 20, 2006 at 11:24:34AM +0200, Martin Schulze wrote:
> For example:
>   Dovecot uses </etc/ssl/certs/dovecot.pem>.
>   This is a symbolic link to </etc/ssl/certs/ssl-cert-snakeoil.pem> if
>   the above file or link does not exist during configuration of
>   dovecot.
> That way, the admin can easily replace the symlink with a real
> certificate if they want per-service certificates.
> If, however, they want to have one real certificate for everything,
> they can replace the snakeoil certificate like Martin Pitt proposed.
Sorry if I misunderstand something, but is it okay to call it snakeoil
if it is real certificate? I like to say that the symbolic links for
per-service certificate shouldn't point to something called snake-oil.

Just my opinion.

Reply to: