SuSE Linux: Versions since 8.2
cd /etc/ssl/certsNow proceed to issue the actual certificate. If your system is reachable at one IP or one host name only, execute the following command:
openssl req -new -x509 -nodes -out imapd.pem -keyout imapd.pem -days 365You will be requested to enter your Country Name (two-letter code), State or Province Name (full name), Locality Name (e.g., city), Organization Name (e.g., company), Organizational Unit Name (e.g., department), Common Name (your host name), and e-mail address.
The "Common Name", which contains your system's full DNS name or IP, is particularly important.
If your host is reachable at several DNS names or IPs, a separate certificate can be issued for each one of them:
openssl req -new -x509 -nodes -out imapd-your.domain.com.pem -keyout \ imapd-your.domain.com.pem -days 365or
openssl req -new -x509 -nodes -out imapd-x.x.x.x.pem -keyout \ imapd-x.x.x.x.pem -days 365
$EDITOR /etc/xinetd.d/imapAppend the section "imaps" if missing.
service imaps { disable = no socket_type = stream protocol = tcp wait = no user = root server = /usr/sbin/imapd flags = IPv4 }Save the changes and restart xinetd with the command rcxinetd restart.
$EDITOR /etc/inetd.confDisable all the lines starting with imap or imaps by furnishing them with a comment sign (#). Then append the following line:
imaps stream tcp nowait root /usr/sbin/imapd imapdNow restart inetd with rcinetd restart and you will be able to set up SSL-encrypted IMAP sessions to your host.
We would like to thank the author of this article, Christoph Thiel.