Sv: 2FA/MFA with IMAP & postfix/submission

Stuart Henderson stu at spacehopper.org
Fri Jul 16 13:34:29 EEST 2021


On 2021-07-15, Sebastian <sebastian at sebbe.eu> wrote:
> Best solution is to offer a webmail with TOTP or SQRL or similiar secure =
> auth method.
>
> Then have that webmail adds IP or country into trusted list, so if you =
> want to access IMAP mail or SMTP mail from hotel wifi, you have to =
> simply do one single login to webmail, and then your IMAP/SMTP will work =
> as usual.

As long as the IMAP/SMTP access is coming from the same ISP as the web
access and not, for example, natted to one IP whereas the web traffic
is coming from a proxy, or natted to a pool of addresses (or balanced
between multiple internet connections) where you don't always get the
same external address.




More information about the dovecot mailing list