Index: dovecot-2.3.0.rc1/doc/example-config/conf.d/10-ssl.conf =================================================================== --- dovecot-2.3.0.rc1.orig/doc/example-config/conf.d/10-ssl.conf +++ dovecot-2.3.0.rc1/doc/example-config/conf.d/10-ssl.conf @@ -9,7 +9,7 @@ # dropping root privileges, so keep the key file unreadable by anyone but # root. Included doc/mkcert.sh can be used to easily generate self-signed # certificate, just make sure to update the domains in dovecot-openssl.cnf -ssl_cert = [CompilingSource.txt] -By default the SSL certificate is read from '/etc/ssl/certs/dovecot.pem' and +By default the SSL certificate is read from '/etc/ssl/private/dovecot.crt' and the private key from '/etc/ssl/private/dovecot.pem'. The '/etc/ssl' directory can be changed using the '--with-ssldir=DIR' configure option. Both can of course be overridden from the configuration file. Index: dovecot-2.3.0.rc1/doc/wiki/SSL.CertificateCreation.txt =================================================================== --- dovecot-2.3.0.rc1.orig/doc/wiki/SSL.CertificateCreation.txt +++ dovecot-2.3.0.rc1/doc/wiki/SSL.CertificateCreation.txt @@ -39,7 +39,7 @@ CN matches the connected host name, othe invalid. It's also possible to use wildcards (eg. *.domain.com) in the host name. They should work with most clients. -By default the certificate is created to '/etc/ssl/certs/dovecot.pem' and the +By default the certificate is created to '/etc/ssl/private/dovecot.crt' and the private key file is created to '/etc/ssl/private/dovecot.pem'. Also by default the certificate will expire in 365 days. If you wish to change any of these, modify the mkcert.sh script. Index: dovecot-2.3.0.rc1/doc/wiki/SSL.DovecotConfiguration.txt =================================================================== --- dovecot-2.3.0.rc1.orig/doc/wiki/SSL.DovecotConfiguration.txt +++ dovecot-2.3.0.rc1/doc/wiki/SSL.DovecotConfiguration.txt @@ -6,7 +6,7 @@ The most important SSL settings are (in ---%<------------------------------------------------------------------------- ssl = yes # Preferred permissions: root:root 0444 -ssl_cert =