13 Jan
2026
13 Jan
'26
4:35 p.m.
Michael Peddemors via dovecot <dovecot@dovecot.org> wrote:
And yes, while disable_plaintext_auth = yes should be the go to, you want to stop accepting connections on 110/143 (993/995 should be used).
In some environments, you could take it even further by allowing access to the IMAP and SMTP submission ports only via a VPN such as WireGuard or Nebula.