On Sun, Jul 15, 2007 at 03:50:19PM -0700, David Brodbeck wrote: > > On systems I run, I often symlink the HTTP, IMAP, and SMTP server > certificate locations to the same certificate file, for ease of > maintenance. Obviously this only works if your machine uses the same > hostname for all those services, though. > I too like this approach. Additionally, many services support wildcard entries in your certificates. I have mine set up to have
CN = the.domain CN = *.the.domain I think that the only service that will reject this is OpenLDAP. There may be others, but I've not used them. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
