14 Apr
2020
14 Apr
'20
10:57 p.m.
Le 14 avr. 2020 à 18:57, A. Schulze <sca@andreasschulze.de> a écrit :
Am 13.04.20 um 20:52 schrieb David Mehler:
Hello,
Before I get in to my question is ssl on 993 or starttls on 143 better from a security perspective?
implicit TLS is recommended: https://tools.ietf.org/html/rfc8314#section-3
One rational for this is to make sure broken clients don’t send clear text credential on port 143, even if STARTTLS is required.
So from a security perspective, you can consider TLS on port 943 a better solution.