I actually have a theory now, after reading this on Dovecot’s documentation:

"Regardless of the value for listener’s ssl setting, some services will still try to initialize encryption if global ssl is on. This is for example done to accommodate STARTTLS commands for IMAP/SUBMISSION/LMTP protocols. In other words, ssl is truly disabled only when global ssl is turned off.»

Could this be an explanation as to why roundcube only connects successfully to managesieve when configured to connect to the hostname that’s on my ssl certificates, even when I turn ssl off?

Best,

Francis 


On 8 Sep 2022, at 19:55, Francis Augusto Medeiros-Logeay <r_f@med-lo.eu> wrote:

I tried, it didn’t work. When I disabled ssl on dovecot, used just the ip address on roundcube and disabled TLS, it didn’t work. TLS (explicit) does not work either. But it works somehow if I use the fqdn as the hostname.

Francis Augusto Medeiros-Logeay skrev den 2022-09-08 12:34:
Yes, it works. I guess it must be Roundcube, after its update. I need
to figure out if the configuration has changed.

why ssl on rfc 1918 local non routed networks ?

in roundcbe there is example config for no ssl, if this works why not 
use it then ?