Share your knowledge at the LQ Wiki.
Go Back > Forums > Linux Forums > Linux - Server
User Name
Linux - Server This forum is for the discussion of Linux Software used in a server related context.


  Search this Thread
Old 11-09-2010, 05:02 AM   #1
LQ Newbie
Registered: Feb 2009
Location: Germany
Distribution: CentOS 5.3
Posts: 15

Rep: Reputation: 8
Question What kind of SSL certificate do I need

Hi everybody,

I have a CentOS server, which hosts a qmail server, an apache web
server, a mysql database and other services. I want to secure the
connection to my qmail server, some areas of my apache web server and
public sql connections with ssl encryption.

I googled around and tried to get some clue on ssl certificates. So
what kind of ssl certificate do I need?

I think I need a single root or wildcard certificate so I can secure my
subdomains as well (e.g and
Are ssl certificates port dependend or are they just domain dependend?

Does anyone know a good CA that issues ssl certificates I need for
about 50 / $ per year?

I know that I can issue a cert on my own, but that will always be
prompted for admittance, so I want a cert that is issued by a known CA,
which is accepted by most browsers and mail clients.

Best regards,
Old 11-09-2010, 12:12 PM   #2
Senior Member
Registered: Jul 2007
Distribution: Ubuntu 10.10, Slackware 64-current
Posts: 2,124

Rep: Reputation: 779Reputation: 779Reputation: 779Reputation: 779Reputation: 779Reputation: 779Reputation: 779
Try Startcom, if you would like a free certificate that your browser will recognize. The price on certificates is all over the map and perhaps someone will have some other suggestions. This will work for web pages at least, and theoretically for mail servers. For my mail server (Postfix), I used a self signed certificate and haven't had any issues.
Old 11-10-2010, 05:13 AM   #3
LQ Newbie
Registered: Feb 2009
Location: Germany
Distribution: CentOS 5.3
Posts: 15

Original Poster
Rep: Reputation: 8
Thanks for you reply.

I tried self signed certs, but the tested browsers (Internet Explorer, Firefox, Opera) and mail clients (Outlook, Thunderbird, Eudora) all nagged that the certificate could not be authenticated by known CAs and requested to install the certs myself.

I want to avoid this messages by using a cert issued by one of the known CAs (VeriSign, Thawte, etc.). I don't mind spending some money on ssl certificates, but since it is for private use I don't want to pay more than 50$ p.a.

Best regards,


apache, mail, mysql, ssl

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
How to import/use CAcert SSL root certificate to use SSL with Xchat IRC client? GrapefruiTgirl Linux - Software 9 04-05-2011 09:54 AM
Apache with SSL does not load the 2nd SSL certificate janstapel Linux - Newbie 1 06-17-2010 09:32 PM
ssl certificate nagavinodh Linux - Newbie 1 11-05-2009 07:43 AM
SSL Certificate The_JinJ Linux - General 1 03-21-2005 11:46 PM
ssl-certificate twantrd Linux - General 1 03-31-2004 08:47 AM > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 11:54 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration