IMAPS and POP3S certificates

Because the certificates used for POP3S and IMAPS are self signed every time I open my e-mail client I get a message saying so.

How do I get my hands on the certificates so that I can install them on my computer so that they are trusted?

 

It's OK, I've sorted it!

/etc/postfix/ssl/

 

Hmm, even importing those certs into my keychain on OS X didn't work.

Any other ideas?

 

On the certs I made, the common name is just "domain", does the common name have to be "sub.domain.com" of the mail server?

I'm guessing it does, that's why my certs aren't working!

 

Can I just stop postfix and saslauthd, recreate my certificates with the right CN, put them in /etc/postfix/ssl/ and restart the services?

 

Yes, that should work.

 

Thanks, it's worked perfectly, installed the certificate on my Windows and OS X machines and set it to be trusted. Everything works fine!