From 9be61a477c0b8d314033547c554cdae2c3846e4d Mon Sep 17 00:00:00 2001 From: Thomas VIAL Date: Tue, 18 Aug 2015 20:49:49 +0200 Subject: [PATCH] Improved documentation for #14 --- README.md | 15 +++++++++++++-- bin/generate-ssl-certificate | 3 --- 2 files changed, 13 insertions(+), 5 deletions(-) diff --git a/README.md b/README.md index 612aad00..98098134 100644 --- a/README.md +++ b/README.md @@ -69,9 +69,20 @@ You can easily generate en SSL certificate by using the following command: docker run -ti --rm -v "$(pwd)"/postfix/ssl:/ssl -h mail.my-domain.com -t tvial/docker-mailserver generate-ssl-certificate + # Press enter + # Enter a password when needed + # Fill information like Country, Organisation name + # Fill "mail.my-domain.com" as FQDN + # Don't fill extras + # Enter same password when needed + # Sign the certificate? [y/n]:y + # 1 out of 1 certificate requests certified, commit? [y/n]y + # will generate: - # postfix/ssl/mail.my-domain.com.key - # postfix/ssl/mail.my-domain.com.csr + # postfix/ssl/mail.my-domain.com-key.pem (used in postfix) + # postfix/ssl/mail.my-domain.com-req.pem + # postfix/ssl/mail.my-domain.com-cert.pem (used in postfix) + # postfix/ssl/mail.my-domain.com-combined.pem (used for courier) Note that the certificate will be generate for the container `fqdn`, that is passed as `-h` argument. diff --git a/bin/generate-ssl-certificate b/bin/generate-ssl-certificate index 080a2708..682b07d4 100644 --- a/bin/generate-ssl-certificate +++ b/bin/generate-ssl-certificate @@ -12,6 +12,3 @@ openssl ca -out /ssl/$FQDN-cert.pem -infiles /ssl/$FQDN-req.pem # Combine certificates for courier cat /ssl/$FQDN-key.pem /ssl/$FQDN-cert.pem >> /ssl/$FQDN-combined.pem -# chmod 644 /etc/postfix/foo-cert.pem /etc/postfix/cacert.pem -# chmod 400 /etc/postfix/foo-key.pem -