Red Hat ENTERPRISE LINUX 4.5.0 Reference Manual page 233

Answer all of the questions to complete the process.
To create a self-signed SSL certificate for POP, change to the
directory, and type the following commands as root:
rm -f ipop3d.pem make ipop3d.pem
Again, answer all of the questions to complete the process.
Important
Please be sure to remove the default
issuing each
Once finished, execute the
daemon which controls
Alternatively, the
stunnel
standard, non-secure daemons,
The program uses external OpenSSL libraries included with Red Hat Enterprise Linux
stunnel
to provide strong cryptography and protect the connections. It is best to apply to a CA to obtain
an SSL certificate, but it is also possible to create a self-signed certificate.
To create a self-signed SSL certificate, change to the
type the following command:
make stunnel.pem
Again, answer all of the questions to complete the process.
Once the certificate is generated, it is possible to use the
mail daemon using the following command:
/usr/sbin/stunnel -d 993 -l /usr/sbin/imapd imapd
Once this command is issued, it is possible to open an IMAP email client and connect to the
email server using SSL encryption.
To start the using the
pop3d
/usr/sbin/stunnel -d 995 -l /usr/sbin/pop3d pop3d
command.
make
/sbin/service xinetd restart
and .
imapd ipop3d
command can be used as an SSL encryption wrapper around the
or
imapd pop3d
command, type the following command:
stunnel
Securing Communication
/usr/share/ssl/certs/
and
imapd.pem ipop3d.pem
command to restart the
.
/usr/share/ssl/certs/
command to start the
stunnel
files before
xinetd
directory, and
imapd
209