WJCarpenter wrote:
ka> per another current thread (o/s tuning for imap), I've installed ka> imapproxy, and it supports starttls to the backend imap server. It ka> doesn't use encryption on the incoming connections though, since ka> they are presumably from localhost (squirrelmail). Ken
That's an interesting thought. Have you actually gotten its STARTTLS to work? I tried it a couple days ago with no luck, but maybe I just didn't try hard enough.
I had a bit of trouble with it as well. I set it to connect to the dovecot on 993 and listen on 143 locally. That had an odd effect. It connected to dovecot, but failed to LISTEN locally, and nothing was logged about this failure! After trying various other things, I changed the settings to 143 for both and it worked. Then I set "force tls = yes", pointed the config options at the bottom of the config file to valid cert,ca,key, etc.. and yes, it works great. tcpdump verifies that it's using TLS now.
Ken
-- Ken Anderson Pacific.Net