I generate the key using:<br /><br />openssl req -new -outform PEM -out
/etc/postfix/smtpd.cert -newkey rsa:2048 \<br />-nodes -keyout
/etc/postfix/smtpd.key -keyform PEM -days 3650 -x509<br /><br />I was
following a guide from: <a
href="http://workaround.org/articles/ispmail-sarge/">http://workaround.org/articles/ispmail-sarge/</a><br
/><br />I would appreciate if you can assist me in properly creating and
testing the key.<br /><br />Thank you<br /><br />Regards<br /><br />>
On Sat, Oct 07, 2006 at 09:25:20PM +0800, Mohamed Sulaiman Sultan <br
/>> Suhaibuddeen wrote: <br />>> <br />>> <br />>> I
had regenerate my cert, but this is shown in my mail.log, is these <br
/>>> normal? please advice <br />> <br />> How do you exactly
generate your cert? <br />> <br />> Afaik, postfix has 2 lines in
it's config file, one for the certificate, <br />> and one for the key.
They can both point to the same file. <br />> <br />> You need a
file with: "-----BEGIN CERTIFICATE-----" in it, and one with <br
/>> "-----BEGIN RSA PRIVATE KEY-----" (or DSA). <br />>
<br />> That mail.log file really don't look normal. <br />> <br
/>> Can you try connecting to it using the openssl s_client? <br />>
Something like: <br />> openssl s_client -connect localhost:25
-starttls smtp -crlf <br />> <br />> <br />> <br />> Kurt <br
/>> <br />> <br />