exim-gen-cert


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45

#!/bin/bash

. /etc/sysconfig/network

# Source exim configureation.
if [ -f /etc/sysconfig/exim ] ; then
        . /etc/sysconfig/exim
fi

USER=${USER:=exim}
GROUP=${GROUP:=exim}

gen_cert() {
        if [ ! -f /etc/pki/tls/certs/exim.pem ] ; then
                umask 077
                FQDN=`hostname`
                if [ "x${FQDN}" = "x" ]; then
                        FQDN=localhost.localdomain
                fi
                echo -n $"Generating exim certificate: "
                cat << EOF | openssl req -new -x509 -days 365 -nodes \
                        -out /etc/pki/tls/certs/exim.pem \
                        -keyout /etc/pki/tls/private/exim.pem &>/dev/null
--
SomeState
SomeCity
SomeOrganization
SomeOrganizationalUnit
${FQDN}
root@${FQDN}
EOF
                if [ $? -eq 0 ]; then
                        echo success
                        chown $USER:$GROUP /etc/pki/tls/{private,certs}/exim.pem
                        chmod 600 /etc/pki/tls/{private,certs}/exim.pem
                else
                        echo failure
                fi
                echo
        fi
}

gen_cert

exit 0