[Dovecot] secure email server

Steffen Kaiser skdovecot at smail.inf.fh-brs.de
Wed Oct 23 10:38:34 EEST 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 23 Oct 2013, BONNET, Frank wrote:

> I have to setup a "secured" email server
>
> - encrypted filesystem

hmm. First define what "encrypted" means in this case, the whole partition 
with one master key, encrypted for each user, ... . For the first, several 
block device level approaches exist, for the latter check out AFS or 
Encfs.

> - SSL or TLS only for SMTP and IMAPS

Well, if you use an inspecting firewall, that checks the traffic, you will 
be on the save side of life.

Does IMAPS means: no STARTTLS over IMAP? Then drop the imap listener in 
Dovecot.

> - Talking only to some known other same-secured servers

use an IP firewall.

- -- 
Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQEVAwUBUmd8+l3r2wJMiz2NAQIgVAf+Jx3D8hOty+6vDZ8O5jfU0CoLRr8w/8AR
xqKpZ3+oTd5AR7PsK7YjI+PbW1h3NAgYHn9ms8ANDbG2bdEYUoVg6TNjXFtom1Rp
dIDrTWeZg/8ese+EtxtG2UZeUS11rP41xpQzpKCHjvO/4Ght0aM5sXonkiLNX/39
NffNOhUB1hCF7eFeVmnm3aexr+bKY8b6MqmRKRXQZsgghoNcAxu0sSXd3+02t/ty
brLLhzg3oTPaePSQ72x3FNklhpntyHGOELF8Lun8xCn9hsHCPhBQYRE0eW3G3Qyp
TDCix5UZh7hx8BqNmy3DqIKQza9/M9h+MHpd4j+UL+GOHC324JwAJg==
=WULk
-----END PGP SIGNATURE-----


More information about the dovecot mailing list