[Dovecot] securing dovecot proxy connections

Ken A ka at pacific.net
Thu Sep 6 06:18:45 EEST 2007


WJCarpenter wrote:
> The wiki <http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy>
> page says this: "The connections created to the destination server
> can't be TLS/SSL encrypted.".
> 
> Hrmm.  Right now, with perdition, I'm forcing the use of STARTTLS on
> the internal connections.  I'd just as soon get rid of perdition (to
> have one less moving part in my architecture), but I need the secure
> connections.  
> 
> Is there a way to configure dovecot's internal proxy connections to
> use STARTTLS or some other SSL/TLS level of security?  (Without a
> bunch more research, I don't know what the interaction is between the
> real client, the dovecot proxy, and the destination server.)

per another current thread (o/s tuning for imap), I've installed 
imapproxy, and it supports starttls to the backend imap server. It 
doesn't use encryption on the incoming connections though, since they 
are presumably from localhost (squirrelmail).
Ken


-- 
Ken Anderson
Pacific.Net


More information about the dovecot mailing list