How to check if newly installed SSL certificate
for IMAP and IMAPS is properly installed
Did you have to regenerate your SSL certificate for your mail
server's IMAP and IMAP SSL service?
Did you have to find out if the newly installed certificates are
fine after install?
Here is how:
root@server-hosting [/usr/local ]# openssl s_client -connect
imap.example.com:993
root@server-hosting [/usr/local ]# openssl s_client -connect
imap.example.com:143 -starttls imap
The output returned by this two commands will be the
imap
and
imaps configured certificates as well as extensive info
concerning the installed SSL, the last chunk of info to be spit is
most crucial to know if certificate is fine.
It should be something like:
...
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 1024 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : AES256-SHA
Session-ID:
0B69E91022CB56D64F56CFA08405944D9C4C0069EE4097890B98F1406CF084D5
Session-ID-ctx:
Master-Key:
13745B94E0C5A0604EB7529E7409251961DFD5F4134F3A8FA1082F536A1B5157C86BAA7CC01140528AA729439E3F2E89
Key-Arg : None
Start Time: 1309265383
Timeout : 300 (sec)
Verify return code: 18 (self signed certificate)
---
. OK CAPABILITY completed
closed