On Fri, 03 Jan 2014 10:08:15 -0500 Charles Marcus wrote:
On 2014-01-03 8:32 AM, Charles Marcus <CMarcus@Media-Brokers.com> wrote:
Ok, up until now, I've only always allowed IMAPS connections to dovecot on port 993.
I want to also start allowing clients to user port143+STARTTLS, but I walso want to make sure both ports are locked down to ONLY allow secure connections.
And I just had an idea, but don't know if it is possible.
Can I offer one namespace on one port (ie, SSL/993), and a different namespace on the other port (STARTTLS/143)?
You dont' need 2 namespaces.
In 10-auth.conf set "disable_plaintext_auth = yes"
My 10-master.conf contains
| service imap-login { | inet_listener imap { | port = 143 | } | inet_listener imaps { | port = 993 | ssl = yes | }
And this works.
--Frank Elsner