got a listener on 993
Jean-Daniel
jddupas at xooloo.com
Tue Apr 14 22:57:26 EEST 2020
> Le 14 avr. 2020 à 18:57, A. Schulze <sca at andreasschulze.de> a écrit :
>
>
>
> Am 13.04.20 um 20:52 schrieb David Mehler:
>> Hello,
>>
>> Before I get in to my question is ssl on 993 or starttls on 143 better
>> from a security perspective?
>
> implicit TLS is recommended: https://tools.ietf.org/html/rfc8314#section-3
One rational for this is to make sure broken clients don’t send clear text credential on port 143, even if STARTTLS is required.
So from a security perspective, you can consider TLS on port 943 a better solution.
More information about the dovecot
mailing list