[Dovecot] Allow both SSL/993 and STARTTLS/143 connections (secure only)

Charles Marcus CMarcus at Media-Brokers.com
Fri Jan 3 17:08:15 EET 2014


On 2014-01-03 8:32 AM, Charles Marcus <CMarcus at Media-Brokers.com> wrote:
>
> Ok, up until now, I've only always allowed IMAPS connections to 
> dovecot on port 993.
>
> I want to also start allowing clients to user port143+STARTTLS, but I 
> walso want to make sure both ports are locked down to ONLY allow 
> secure connections. 

And I just had an idea, but don't know if it is possible.

Can I offer one namespace on one port (ie, SSL/993), and a different 
namespace on the other port (STARTTLS/143)?

This would be a simple and effective way to migrate users from one 
namespace to another... have them change both the port/security setting 
and the namespace prefix at the same time, then restart the client... boom.

And this suggests it is possible:

http://wiki2.dovecot.org/Namespaces

The section name in namespaces (e.g. namespace sectionname { .. } is 
used only internally within configuration. It's not required at all, but 
it allows you to update an existing namespace (like how 
15-mailboxes.conf does) or have userdb override namespace settings for 
specific users (namespace/sectionname/prefix=foo/).

But the question is, how exactly to implement it, and I can't see from 
the docs exactly how to go about it.



-- 

Best regards,

*/Charles/*


More information about the dovecot mailing list