Mangesieve security question
Hello,
I have a dovecot 2.2.6 on a Linux platform. I have configured manageseive extension.
I have opened the manageseive port (4190) to entire world. (since I need my thunderbird and other clients to create seive scripts).
I just wanted to know if it is ok to open that port to everyone, and get some feedback on some security measures specific to manageseive.
-Thanks in advance Vijay
PS: I have taken reasonable server hardening measures. This question is specific to manageseive.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Tue, 24 Jun 2014, Vijay Rajah wrote:
PS: I have taken reasonable server hardening measures. This question is specific to manageseive.
You can search the list archive or CERN for security reports about Dovecot's ManageSieve implementation, other than that, IMHO, all what applies to Dovecot in general (IMAP, POP3) applies to ManageSieve, no specials here.
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux)
iQEVAwUBU6kw+Xz1H7kL/d9rAQLRfwgAry6HWqh79/7urvU+EAo40Z83s0tvdmay gkT+IDmrnpREaP2YBVHrRrlGcVv6/23RbpJcZUjJU1fNQ0mGXWprLuzU4sM2z0nQ z0Nil4Lv0/KNLYSodVYKK4V7xU0pFiJ/Ox54lHRkUoBjsI6oO/GYGP6sge+yYWPo IB9mnIl9hcwcb60prdMa6FNJXEUijPs/z/u29KxVgfAkHnAi6glkrWnh/Y5xJ4F8 Xu45/CXos1BkSnBXVofcY+SmUSEWAPLe4bIfKwatcx1i3jmo5DlD/6I9QqdS6I4Q 7nJt/aPQiWUYL0QwP4mnlxFkuW6TK1FdKeTR7eGD6eEzwP4hBpUahg== =0ODb -----END PGP SIGNATURE-----
participants (2)
-
Steffen Kaiser
-
Vijay Rajah