12 Jun
2004
12 Jun
'04
12:20 a.m.
On Fri, 2004-06-11 at 11:13, Roman Bogoyev wrote:
How can I secure dovecot listening on port 143 to specific machines only?
imap_listen = 127.0.0.1
But it works only for one IP then.
Squirrelmail suggests using non-ssl if the imap daemon is on the same host...
Otherwise squirrelmail could use TLS but what about other clients wanting to use SSL on port 993? (sorry I don't know enough about TLS).
Port 993 forces using TLS, but TLS can be used in 143 port as well, so I wouldn't recommend limiting that imap_listen.
Better would be to just set disable_plaintext_auth = yes setting and Dovecot doesn't allow logins without SSL enabled.