Hello,

I've spend the better part of the day trying to get POP/IMAP working on a Suse 9.2 Pro machine, then later learned that they require SSL.

I did create a PEM file, following a thread on linuxquestions.org; however, every time I use Outlook or Thunderbird, I'm prompted if I'd like to continue using the server. I have learned that I need to import a certificate, but I haven't really learned how to do this.

Can anyone tell me the basic steps to create a pem for the /etc/ssl/certs and have a root CA created for mail clients to import?

Thank you for your time and effort,

It's odd that a pop account needs certificate. Plain pop doesn't use ssl. SPOP does.

Anyway.. I use a this great reference anytime I need to openssl an x.509 cert or two. It is for use with freeswan vpn (renamed I think) but the steps are useful for any x.509 application. Even goes into how to export it to a windows certificate store. Nate Carlson is the man.

http://www.natecarlson.com/linux/ipsec-x509.php


Oh. And there are gui tools out that make this a point and click affair in x-windows. Hmmm... without checking I think one is called TinyCA. But the instructions by Mr. Carlson should be all you need.


-b

That's pretty good, but it doesn't really cover pop and imap.