Ubuntu
dovecot package

dovecot scripts install packages does not create a new certificate

Bug #152874 reported by Antonio
4
Affects Status Importance Assigned to Milestone
dovecot (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

Binary package hint: dovecot-common

When install dovecot-common the scripts postinst does not create a certificate.
It is normal ?

Thank's

Revision history for this message
Adam Sommer (asommer) wrote :

Which version of Ubuntu are you running? I believe that Dovecot hasn't created a certificate since Ubuntu 6.06 (Dapper).

My thought about it not creating a cert was so that you could supply one from a CA, but I could be wrong about that.

Revision history for this message
Antonio (netbix) wrote :

I have upgrade feisty to gutsy RC1

Revision history for this message
Adam Sommer (asommer) wrote : Re: [Bug 152874] Re: dovecot scripts install packages does not create a new certificate

According to this line in the dovecot-common.postinst script:

SSL_CERT=$( (grep "ssl_cert_file" /etc/dovecot/dovecot.conf || echo
'/etc/ssl/certs/dovecot.pem') | cut -d'=' -f2)

the cert it finds is:

/etc/ssl/certs/ssl-cert-snakeoil.pem

This cert is configured in the dovecot.conf file by the
ssl-cert-snakeoil.dpatch patch. I believe this certificate is created by
the ssl-cert package. So I guess not creating a certificate during install
is the intended result. If you want to use SSL with Dovecot you can either
use the ssl-cert-snakeoil certificate or generate one of your own.

I assume this is a feature imported from Debian?

On 10/15/07, Antonio <email address hidden> wrote:
>
> I have upgrade feisty to gutsy RC1
>
> --
> dovecot scripts install packages does not create a new certificate
> https://bugs.launchpad.net/bugs/152874
> You received this bug notification because you are a direct subscriber
> of the bug.
>

--
Party On,
Adam

Revision history for this message
Antonio (netbix) wrote :

Ok this is not a bug.
Sorry.

Changed in dovecot:
status: New → Invalid
Revision history for this message
Soren Hansen (soren) wrote : Re: [Bug 152874] Re: dovecot scripts install packages does not create a new certificate

On Mon, Oct 15, 2007 at 01:53:45PM -0000, asommer wrote:
> This cert is configured in the dovecot.conf file by the
> ssl-cert-snakeoil.dpatch patch. I believe this certificate is created
> by the ssl-cert package. So I guess not creating a certificate during
> install is the intended result. If you want to use SSL with Dovecot
> you can either use the ssl-cert-snakeoil certificate or generate one
> of your own.

> I assume this is a feature imported from Debian?

No, that's actually a patch we apply every time we re-sync with Debian.
Apart from that, you're absolutely right.

--
Soren Hansen
Ubuntu Server Team
http://www.ubuntu.com/

Revision history for this message
Adam Sommer (asommer) wrote : Re: [Bug 152874] Re: dovecot scripts install packages does not create a new certificate

Cool... thanks Soren.

On 10/18/07, Soren Hansen <email address hidden> wrote:
>
> On Mon, Oct 15, 2007 at 01:53:45PM -0000, asommer wrote:
> > This cert is configured in the dovecot.conf file by the
> > ssl-cert-snakeoil.dpatch patch. I believe this certificate is created
> > by the ssl-cert package. So I guess not creating a certificate during
> > install is the intended result. If you want to use SSL with Dovecot
> > you can either use the ssl-cert-snakeoil certificate or generate one
> > of your own.
>
> > I assume this is a feature imported from Debian?
>
> No, that's actually a patch we apply every time we re-sync with Debian.
> Apart from that, you're absolutely right.
>
> --
> Soren Hansen
> Ubuntu Server Team
> http://www.ubuntu.com/
>
> --
> dovecot scripts install packages does not create a new certificate
> https://bugs.launchpad.net/bugs/152874
> You received this bug notification because you are a direct subscriber
> of the bug.
>

--
Party On,
Adam

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.