Red Hat Bugzilla – Bug 109257
Dovecot RPM fails to make ssl directories
Last modified: 2007-11-30 17:10:33 EST
Description of problem: Attempting to create an imap SSL certificate for Dovecot Imap. I edited dovecot-openssl.conf and tried to make the cert. Running 'mkcert.sh' from /usr/share/doc/dovecot-0.99.10/, the script fails as it needs to write out the two imapd.pem files and the destination directories are missing. Version-Release number of selected component (if applicable): dovecot-0.99.10-6 How reproducible: Always Steps to Reproduce: 1. See above 2. 3. Actual results: Failure to make imap SSL certificate Expected results: Successfull creation of imap SSL certificate Additional info: The Fix: 1] mkdir /etc/ssl/certs && mkdir /etc/ssl/private [as derived from error message] 2] run mkcert.sh again and you have success. 3] What should be the correct permissions for these directories?
You actually want to have them in /usr/share/ssl instead of /etc/ssl -- see the %post scriptlet for dovecot. I'll try to get around to patching mkcert.sh at some point.
concerning dovecot-0.99.10.4 (FC2-test2): ------------------------------------------ other workaround (after editing dovecot-openssl.conf): (1) in /usr/share/doc/dovecot-0.99.10.4/ edit mkcert.sh and change the line SSLDIR=${SSLDIR-/etc/ssl} to SSLDIR=${SSLDIR-/usr/share/ssl} (2) then run mkcert.sh (maybe you have to make it executable first) the generated certs files are now /usr/share/ssl/certs/imapd.pem /usr/share/ssl/private/imapd.pem If you want these to be used you have to adjust the settings of ssl_cert_file and ssl_key_file in /etc/dovecot.conf