Rebuilding RSA Certificates?

Discussion in 'General' started by crypted, Dec 13, 2009.

  1. crypted

    crypted Member

    Okay, I'm just sick of getting the following notice on Outlook:
    The server you are connected to is using a security certificate that cannot be verified.
    The target principal is incorrect.

    Data from the CERT is:
    Certificate issuer [email protected], imap.example.com IMAP server
    Validated Friday, April 24 2009
    Subject [email protected], imap.example.com IMAP server
    Issued to imap.example.com
    Issued by imap.example.com
    Validated from 4/29/2009 to 4/24/2010

    How can I resolve this issue to make the annoying notices go away?
     
    crypted, Dec 13, 2009
    #1
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    till, Dec 14, 2009
    #2
  3. crypted

    crypted Member

    Unfortunately, that link does not comport to the installation that ISPCONFIG uses.

    dingle@its:/home/dingle# nano /etc/c
    conman.conf cron.daily/ cron.hourly/ crontab csh.cshrc
    cron.d/ cron.deny cron.monthly/ cron.weekly/ csh.login
    dingle@its:/home/dingle# locate imapd.cnf
    dingle@its:/home/dingle# locate pop3d.cnf
    dingle@its:/home/dingle# wheries imapd.cnf
    wheries: Command not found.
    dingle@its:/home/dingle# whereis imapd.cnf
    imapd:
    dingle@its:/home/dingle#

    The files the discussion in the link mentions are not on the server and the courier folder does not exist.
     
    crypted, Dec 14, 2009
    #3
  4. falko

    falko Super Moderator Howtoforge Staff

    What's the output of
    Code:
    netstat -tap
    ? Which distribution do you use?
     
    falko, Dec 15, 2009
    #4
  5. crypted

    crypted Member

    Hey falko. Umm, using CentOS 5.4. Output:

    Active Internet connections (servers and established)
    Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
    tcp 0 0 mail.derekgordon.com:irdmi *:* LISTEN -
    tcp 0 0 mail.derekgordon.com:8551 *:* LISTEN -
    tcp 0 0 *:mysql *:* LISTEN -
    tcp 0 0 mail.derekgordon.c:distinct *:* LISTEN -
    tcp 0 0 *:50000 *:* LISTEN -
    tcp 0 0 *:ndmp *:* LISTEN -
    tcp 0 0 *:hosts2-ns *:* LISTEN -
    tcp 0 0 *:ftp *:* LISTEN -
    tcp 0 0 mail.intrac.net:domain *:* LISTEN -
    tcp 0 0 mail.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 its7.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 its6.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 its5.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 its4.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 its3.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 its2.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 its1.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 its.derekgordon.com:domain *:* LISTEN -
    tcp 0 0 localhost.localdomai:domain *:* LISTEN -
    tcp 0 0 its5.derekgordon.com:ica *:* LISTEN -
    tcp 0 0 mail.derekg:afs3-fileserver *:* LISTEN -
    tcp 0 0 *:smtp *:* LISTEN -
    tcp 0 0 localhost.localdomain:rndc *:* LISTEN -
    tcp 0 0 mail.derekgordon.com:irdmi ip24-253-198-248.ok.o:54275 ESTABLISHED -
    tcp 1 0 its.derekgordon.com:35608 demowsmt.demos.ibm.com:http CLOSE_WAIT -
    tcp 0 0 its.derekgordon.com:35609 demowsmt.demos.ibm.com:http ESTABLISHED -
    tcp 0 0 mail.derekgordon.c:distinct ip72-200-222-137.ok.o:32888 ESTABLISHED -
    tcp 0 218 mail.derekgordon.c:distinct cpe-075-177-073-192.t:62863 ESTABLISHED -
    tcp 0 0 mail.derekgordon.c:distinct cpe-075-177-073-192.t:62866 ESTABLISHED -
    tcp 0 0 mail.derekgordon.c:distinct cpe-075-177-073-192.t:62864 ESTABLISHED -
    tcp 0 0 mail.derekgordon.c:distinct cpe-075-177-073-192.t:62865 ESTABLISHED -
    tcp 0 0 its5.derekgordon.com:ica 18.56.venyu.com:6290 FIN_WAIT2 -
    tcp 0 0 mail.derekg:afs3-fileserver mail.derekgordon.com:48482 ESTABLISHED -
    tcp 0 0 mail.derekgordon.com:49558 mail.derekgordon.com:irdmi ESTABLISHED -
    tcp 0 0 mail.derekgordon.com:irdmi ip24-253-198-248.ok.o:43919 ESTABLISHED -
    tcp 0 0 mail.derekgordon.com:irdmi mail.derekgordon.com:49558 ESTABLISHED -

    tcp 0 0 mail.derekgordon.com:irdmi mail.intrac.net:43404 ESTABLISHED -
    tcp 0 0 mail.derekg:afs3-fileserver ip24-253-198-248.ok.o:34721 ESTABLISHED -
    tcp 0 0 mail.derekgordon.c:distinct ip68-229-218-197.ok:cfinger ESTABLISHED -
    tcp 0 0 mail.derekgordon.com:irdmi cpe-075-177-073-192.t:fpitp ESTABLISHED -
    tcp 0 0 mail.derekgordon.com:48482 mail.derekg:afs3-fileserver ESTABLISHED -
    tcp 0 0 mail.intrac.net:43404 mail.derekgordon.com:irdmi ESTABLISHED -
    tcp 1 37 its.derekgordon.com:smtp 189-30-164-22.ctame700:8079 CLOSING -
    tcp 0 0 *:imaps *:* LISTEN -
    tcp 0 0 *:pop3s *:* LISTEN -
    tcp 0 0 *:pop3 *:* LISTEN -
    tcp 0 0 *:imap *:* LISTEN -
    tcp 0 0 *:http *:* LISTEN -
    tcp 0 0 *:ssh *:* LISTEN -
    tcp 0 0 localhost6.localdomain:rndc *:* LISTEN -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-90.go:63547 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-185.g:47325 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:58994 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:35952 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-185.g:52692 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:ssh ip72-198-75-211.ok.ok:52628 ESTABLISHED -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:33891 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:40794 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:60492 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:34119 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-185.g:50914 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:35134 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:imaps cpe-98-150-236-135.h:neckar ESTABLISHED -
    tcp 0 0 its5.derekgordon.com:imaps cpe-98-150-236-135.ha:33910 ESTABLISHED -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:59178 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:45351 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:57888 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:imaps cpe-98-150-236-135.ha:40007 ESTABLISHED -
    tcp 0 23360 its5.derekgordon.com:http msnbot-65-55-207-70.s:60164 ESTABLISHED -
    tcp 0 0 its5.derekgordon.com:imaps cpe-98-150-236-135.ha:35151 ESTABLISHED -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:56838 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:50681 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:35822 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:54507 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:35047 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-185.g:57440 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:43204 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:47551 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-185.g:53016 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:44715 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:59562 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-90.go:60142 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-185.g:35340 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:33192 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:50337 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:55199 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:33694 TIME_WAIT -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:53149 TIME_WAIT -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-185.g:51005 TIME_WAIT -
    tcp 0 0 its4.derekgordon.com:imaps ip72-198-75-211.ok.ok:52587 ESTABLISHED -
    tcp 0 0 its.derekgordon.com:http h85.159.108.208.lnoca:34449 TIME_WAIT -
    tcp 0 0 its4.derekgordon.com:imaps ip72-198-75-211.ok.ok:52593 ESTABLISHED -
    tcp 0 0 its5.derekgordon.com:imaps cpe-98-150-236-135.ha:38107 ESTABLISHED -
    tcp 0 0 its4.derekgordon.com:imaps ip72-198-75-211.ok.ok:52603 ESTABLISHED -
    tcp 0 0 its5.derekgordon.com:http crawl-66-249-71-185.g:45607 TIME_WAIT -
    dingle@its:~$
     
    Last edited: Dec 15, 2009
    crypted, Dec 15, 2009
    #5
  6. falko

    falko Super Moderator Howtoforge Staff

    Doesn't your netstat -tap show the program names? It just shows - at the end of each line... :confused:

    Which tutorial did you use to set the system up?
     
    falko, Dec 16, 2009
    #6
  7. crypted

    crypted Member

    Mmm my SSH window seemed to have cut them out since it wasn't maximized.
    tcp 0 0 *:imaps *:* LISTEN 2084/dovecot
    tcp 0 0 *:pop3s *:* LISTEN 2036/pop3-login
    tcp 0 0 *:pop3 *:* LISTEN 2036/pop3-login
    tcp 0 0 *:imap *:* LISTEN 2084/dovecot
    tcp 0 0 *:http *:* LISTEN 1720/httpd
    tcp 0 0 *:ssh *:* LISTEN 1965/sshd
    tcp 0 0 localhost6.localdomain:rndc *:* LISTEN 18282/named

    I used the CentOS 5.3 perfect setup guide for ISPCONFIG to do it.
     
    crypted, Dec 16, 2009
    #7
  8. falko

    falko Super Moderator Howtoforge Staff

    You're using dovecot, not Courier.
    I think the certificate is in /etc/pki/dovecot/certs/dovecot.pem or /etc/pki/dovecot/private/dovecot.pem, and the .cnf file is /etc/pki/dovecot/dovecot-openssl.cnf.
     
    falko, Dec 17, 2009
    #8
  9. crypted

    crypted Member

    I knew that. Holy crap what was my mind thinking. Sorry for that falko!!!
     
    crypted, Dec 17, 2009
    #9

Share This Page