1 diff -Nur old/configure.in new/configure.in
2 --- old/configure.in 2004-06-12 01:38:04.000000000 +0000
3 +++ new/configure.in 2004-07-08 16:53:13.000000000 +0000
5 eval "exec_prefix=$exec_prefix"
6 eval "libexecdir=$libexecdir"
8 +AC_ARG_WITH(certsdir, [ --with-certsdir Directory where certs are created ],
9 +certsdir="$withval", certsdir=$datadir)
13 AC_ARG_WITH(authchangepwdir, [], ,
14 ac_configure_args="$ac_configure_args --with-authchangepwdir=$libexecdir/authlib")
16 diff -Nur old/imap/configure.in new/imap/configure.in
17 --- old/imap/configure.in 2004-06-12 01:38:04.000000000 +0000
18 +++ new/imap/configure.in 2004-07-08 16:53:44.000000000 +0000
20 eval "exec_prefix=$exec_prefix"
23 +AC_ARG_WITH(certsdir, [ --with-certsdir Directory where certs are created ],
24 +certsdir="$withval", certsdir=$datadir)
29 [ --with-mailer=prog Your mail submission program],
31 diff -Nur old/imap/imapd.cnf.in new/imap/imapd.cnf.in
32 --- old/imap/imapd.cnf.in 2001-03-24 04:59:55.000000000 +0000
33 +++ new/imap/imapd.cnf.in 2004-07-08 16:54:18.000000000 +0000
36 -RANDFILE = @datadir@/imapd.rand
37 +RANDFILE = @certsdir@/imapd.rand
41 diff -Nur old/imap/imapd-ssl.dist.in new/imap/imapd-ssl.dist.in
42 --- old/imap/imapd-ssl.dist.in 2004-01-24 20:09:26.000000000 +0000
43 +++ new/imap/imapd-ssl.dist.in 2004-07-08 16:54:04.000000000 +0000
45 # servers, and is optional for SSL/TLS clients. TLS_CERTFILE is usually
46 # treated as confidential, and must not be world-readable.
48 -TLS_CERTFILE=@datadir@/imapd.pem
49 +TLS_CERTFILE=@certsdir@/imapd.pem
51 ##NAME: TLS_TRUSTCERTS:0
53 diff -Nur old/imap/mkimapdcert.8.in new/imap/mkimapdcert.8.in
54 --- old/imap/mkimapdcert.8.in 2004-02-08 04:12:08.000000000 +0000
55 +++ new/imap/mkimapdcert.8.in 2004-07-08 17:01:04.000000000 +0000
58 IMAP over SSL requires a valid, signed, X.509 certificate. The default
59 location for the certificate file is
60 -\fI@datadir@/imapd.pem\fR\&.
61 +\fI@certsdir@/imapd.pem\fR\&.
62 \fBmkimapdcert\fR generates a self-signed X.509 certificate,
66 recognized certificate authority, in order for mail clients to accept the
69 -\fI@datadir@/imapd.pem\fR must be owned by the
70 +\fI@certsdir@/imapd.pem\fR must be owned by the
72 have no group or world permissions.
73 The \fBmkimapdcert\fR command will
74 enforce this. To prevent an unfortunate accident,
76 -will not work if \fB@datadir@/imapd.pem\fR already exists.
77 +will not work if \fB@certsdir@/imapd.pem\fR already exists.
79 \fBmkimapdcert\fR requires
80 \fBOpenSSL\fR to be installed.
83 -\fB@datadir@/imapd.pem\fR
84 +\fB@certsdir@/imapd.pem\fR
87 \fB@sysconfdir@/imapd.cnf\fR
88 diff -Nur old/imap/mkimapdcert.html.in new/imap/mkimapdcert.html.in
89 --- old/imap/mkimapdcert.html.in 2004-02-08 04:12:12.000000000 +0000
90 +++ new/imap/mkimapdcert.html.in 2004-07-08 17:00:45.000000000 +0000
92 location for the certificate file is
95 ->@datadir@/imapd.pem</TT
96 +>@certsdir@/imapd.pem</TT
104 ->@datadir@/imapd.pem</TT
105 +>@certsdir@/imapd.pem</TT
106 > must be owned by the
108 have no group or world permissions.
113 ->@datadir@/imapd.pem</B
114 +>@certsdir@/imapd.pem</B
122 ->@datadir@/imapd.pem</DT
123 +>@certsdir@/imapd.pem</DT
126 >X.509 certificate.</P
127 diff -Nur old/imap/mkpop3dcert.8.in new/imap/mkpop3dcert.8.in
128 --- old/imap/mkpop3dcert.8.in 2004-02-08 04:12:10.000000000 +0000
129 +++ new/imap/mkpop3dcert.8.in 2004-07-08 17:00:01.000000000 +0000
132 POP3 over SSL requires a valid, signed, X.509 certificate. The default
133 location for the certificate file is
134 -\fI@datadir@/pop3d.pem\fR\&.
135 +\fI@certsdir@/pop3d.pem\fR\&.
136 \fBmkpop3dcert\fR generates a self-signed X.509 certificate,
140 recognized certificate authority, in order for mail clients to accept the
143 -\fI@datadir@/pop3d.pem\fR must be owned by the
144 +\fI@certsdir@/pop3d.pem\fR must be owned by the
146 have no group or world permissions.
147 The \fBmkpop3dcert\fR command will
148 enforce this. To prevent an unfortunate accident,
150 -will not work if \fB@datadir@/pop3d.pem\fR already exists.
151 +will not work if \fB@certsdir@/pop3d.pem\fR already exists.
153 \fBmkpop3dcert\fR requires
154 \fBOpenSSL\fR to be installed.
157 -\fB@datadir@/pop3d.pem\fR
158 +\fB@certsdir@/pop3d.pem\fR
161 \fB@sysconfdir@/pop3d.cnf\fR
162 diff -Nur old/imap/mkpop3dcert.html.in new/imap/mkpop3dcert.html.in
163 --- old/imap/mkpop3dcert.html.in 2004-02-08 04:12:11.000000000 +0000
164 +++ new/imap/mkpop3dcert.html.in 2004-07-08 16:59:29.000000000 +0000
166 location for the certificate file is
169 ->@datadir@/pop3d.pem</TT
170 +>@certsdir@/pop3d.pem</TT
178 ->@datadir@/pop3d.pem</TT
179 +>@certsdir@/pop3d.pem</TT
180 > must be owned by the
182 have no group or world permissions.
187 ->@datadir@/pop3d.pem</B
188 +>@certsdir@/pop3d.pem</B
196 ->@datadir@/pop3d.pem</DT
197 +>@certsdir@/pop3d.pem</DT
200 >X.509 certificate.</P
201 diff -Nur old/imap/pop3d.cnf.in new/imap/pop3d.cnf.in
202 --- old/imap/pop3d.cnf.in 2001-03-24 04:59:55.000000000 +0000
203 +++ new/imap/pop3d.cnf.in 2004-07-08 16:54:38.000000000 +0000
206 -RANDFILE = @datadir@/pop3d.rand
207 +RANDFILE = @certsdir@/pop3d.rand
211 diff -Nur old/imap/pop3d-ssl.dist.in new/imap/pop3d-ssl.dist.in
212 --- old/imap/pop3d-ssl.dist.in 2004-01-24 20:09:31.000000000 +0000
213 +++ new/imap/pop3d-ssl.dist.in 2004-07-08 16:54:31.000000000 +0000
215 # servers, and is optional for SSL/TLS clients. TLS_CERTFILE is usually
216 # treated as confidential, and must not be world-readable.
218 -TLS_CERTFILE=@datadir@/pop3d.pem
219 +TLS_CERTFILE=@certsdir@/pop3d.pem
221 ##NAME: TLS_TRUSTCERTS:0
223 diff -Nur old/imap/mkimapdcert.in new/imap/mkimapdcert.in
224 --- old/imap/mkimapdcert.in 2005-06-29 18:01:17.000000000 +0000
225 +++ new/imap/mkimapdcert.in 2005-08-31 21:49:26.142362544 +0000
230 -if test -f @datadir@/imapd.pem
231 +if test -f @certsdir@/imapd.pem
233 - echo "@datadir@/imapd.pem already exists."
234 + echo "@certsdir@/imapd.pem already exists."
239 -cp /dev/null @datadir@/imapd.pem
240 -chmod 600 @datadir@/imapd.pem
241 -chown @mailuser@ @datadir@/imapd.pem
242 +cp /dev/null @certsdir@/imapd.pem
243 +chmod 600 @certsdir@/imapd.pem
244 +chown @mailuser@ @certsdir@/imapd.pem
247 - rm -f @datadir@/imapd.pem
248 - rm -f @datadir@/imapd.rand
249 + rm -f @certsdir@/imapd.pem
250 + rm -f @certsdir@/imapd.rand
255 -dd if=@RANDOMV@ of=@datadir@/imapd.rand count=1 2>/dev/null
257 +dd if=@RANDOMV@ of=@certsdir@/imapd.rand count=1 2>/dev/null
258 @OPENSSL@ req -new -x509 -days 365 -nodes \
259 - -config @sysconfdir@/imapd.cnf -out @datadir@/imapd.pem -keyout @datadir@/imapd.pem || cleanup
260 -@OPENSSL@ gendh -rand @datadir@/imapd.rand 512 >>@datadir@/imapd.pem || cleanup
261 -@OPENSSL@ x509 -subject -dates -fingerprint -noout -in @datadir@/imapd.pem || cleanup
262 -rm -f @datadir@/imapd.rand
263 + -config @sysconfdir@/imapd.cnf -out @certsdir@/imapd.pem -keyout @certsdir@/imapd.pem || cleanup
264 +@OPENSSL@ gendh -rand @certsdir@/imapd.rand 512 >>@certsdir@/imapd.pem || cleanup
265 +@OPENSSL@ x509 -subject -dates -fingerprint -noout -in @certsdir@/imapd.pem || cleanup
266 +rm -f @certsdir@/imapd.rand
267 diff -Nur old/imap/mkpop3dcert.in new/imap/mkpop3dcert.in
268 --- old/imap/mkpop3dcert.in 2005-06-29 18:01:17.000000000 +0000
269 +++ new/imap/mkpop3dcert.in 2005-08-31 21:49:26.143362392 +0000
274 -if test -f @datadir@/pop3d.pem
275 +if test -f @certsdir@/pop3d.pem
277 - echo "@datadir@/pop3d.pem already exists."
278 + echo "@certsdir@/pop3d.pem already exists."
283 -cp /dev/null @datadir@/pop3d.pem
284 -chmod 600 @datadir@/pop3d.pem
285 -chown @mailuser@ @datadir@/pop3d.pem
286 +cp /dev/null @certsdir@/pop3d.pem
287 +chmod 600 @certsdir@/pop3d.pem
288 +chown @mailuser@ @certsdir@/pop3d.pem
291 - rm -f @datadir@/pop3d.pem
292 - rm -f @datadir@/pop3d.rand
293 + rm -f @certsdir@/pop3d.pem
294 + rm -f @certsdir@/pop3d.rand
298 -dd if=@RANDOMV@ of=@datadir@/pop3d.rand count=1 2>/dev/null
299 +dd if=@RANDOMV@ of=@certsdir@/pop3d.rand count=1 2>/dev/null
300 @OPENSSL@ req -new -x509 -days 365 -nodes \
301 - -config @sysconfdir@/pop3d.cnf -out @datadir@/pop3d.pem -keyout @datadir@/pop3d.pem || cleanup
302 -@OPENSSL@ gendh -rand @datadir@/pop3d.rand 512 >>@datadir@/pop3d.pem || cleanup
303 -@OPENSSL@ x509 -subject -dates -fingerprint -noout -in @datadir@/pop3d.pem || cleanup
304 -rm -f @datadir@/pop3d.rand
305 + -config @sysconfdir@/pop3d.cnf -out @certsdir@/pop3d.pem -keyout @certsdir@/pop3d.pem || cleanup
306 +@OPENSSL@ gendh -rand @certsdir@/pop3d.rand 512 >>@certsdir@/pop3d.pem || cleanup
307 +@OPENSSL@ x509 -subject -dates -fingerprint -noout -in @certsdir@/pop3d.pem || cleanup
308 +rm -f @certsdir@/pop3d.rand