Submitted by andrew.harrison on Wed, 09/30/2015 - 13:54
Hello, My server's name is elf.therestaurantmarketinginstitute.com I created a sub server called elf.therestaurantmarketinginstitute.com and then went over to startssl and generated a cert.
When I run this test: http://www.checktls.com/perl/TestReceiver.pl and use one of my emails, everything looks good except for one thing: Cert Hostname DOES NOT VERIFY (mail.foodcoststudio.net != elf.therestaurantmarketinginstitute.com)
HOW do I make sure that all virtual hosts can automatically access this cert?
Many thanks in advance. We are almost setup and configured and could not have proceeded so quickly with any other interface. Webmin is impressive.
Status:
Closed (fixed)
Comments
Submitted by andrew.harrison on Wed, 09/30/2015 - 14:48 Comment #1
I do believe I have found a solution to my conundrum, simply use elf as the mail server and all pop/smtp accounts can login to access email. It appears to be working thus far.
I set the pop and smtp to elf.therestaurantmarketinginstitute.com
Will this be a solution or am I frightfully mistaken?
As it is, it works now.
Thanks Andrew.
Submitted by andreychek on Wed, 09/30/2015 - 14:54 Comment #2
Howdy -- yes, it's no problem to have all users access your server using one particular domain name for email, such as "elf.therestaurantmarketinginstitute.com".
That's a good way to get all your users securely accessing email on your server.
Submitted by andrew.harrison on Wed, 09/30/2015 - 15:14 Comment #3
Whew! That's a relief. Thanks for your reply. Second question. Does vsftpd require the bundle from startssl? If so, where does it get installed? Do I add a line to my config or do I simple include the cert, key and bundle? Thanks again. Andrew
Submitted by andreychek on Wed, 09/30/2015 - 15:30 Comment #4
Virtualmin comes with ProFTPd, rather than vsFTP.
If you'd like to configure ProFTPd to use an SSL cert, Virtualmin doesn't have a way to configure that automatically, though you can do so manually by editing the ProFTPd config file.
There is an example of how to set that up here:
http://www.proftpd.org/docs/howto/TLS.html
Alternatively, you could always use SFTP, which is already setup on your server through the SSH service.
Submitted by andrew.harrison on Wed, 09/30/2015 - 16:17 Comment #5
Thanks for your reply. I created a new vsftpd.pem file and copied:
1. Private key. 2. Domain cert. 3. sub.class1.server.sha2.ca.pem from startssl.This seems to work well.
I do not like SFTP as it allows directory browsing and that is not kosher with me. Thanks for your help. Andrew
Submitted by andrew.harrison on Fri, 10/02/2015 - 20:21 Comment #6