-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Wed, 23 Oct 2013, BONNET, Frank wrote:
I have to setup a "secured" email server
- encrypted filesystem
hmm. First define what "encrypted" means in this case, the whole partition with one master key, encrypted for each user, ... . For the first, several block device level approaches exist, for the latter check out AFS or Encfs.
- SSL or TLS only for SMTP and IMAPS
Well, if you use an inspecting firewall, that checks the traffic, you will be on the save side of life.
Does IMAPS means: no STARTTLS over IMAP? Then drop the imap listener in Dovecot.
- Talking only to some known other same-secured servers
use an IP firewall.
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux)
iQEVAwUBUmd8+l3r2wJMiz2NAQIgVAf+Jx3D8hOty+6vDZ8O5jfU0CoLRr8w/8AR xqKpZ3+oTd5AR7PsK7YjI+PbW1h3NAgYHn9ms8ANDbG2bdEYUoVg6TNjXFtom1Rp dIDrTWeZg/8ese+EtxtG2UZeUS11rP41xpQzpKCHjvO/4Ght0aM5sXonkiLNX/39 NffNOhUB1hCF7eFeVmnm3aexr+bKY8b6MqmRKRXQZsgghoNcAxu0sSXd3+02t/ty brLLhzg3oTPaePSQ72x3FNklhpntyHGOELF8Lun8xCn9hsHCPhBQYRE0eW3G3Qyp TDCix5UZh7hx8BqNmy3DqIKQza9/M9h+MHpd4j+UL+GOHC324JwAJg== =WULk -----END PGP SIGNATURE-----