Displaying 20 results from an estimated 5000 matches similar to: "starttls"
2016 Jul 14
5
controlling STARTTLS by IP address
On my POP3 server, I need to be able to control the use of STARTTLS by
client IP address. Specifically:
* Clients on certain internal subnets (e.g., 192.168.1.0/24) must not have
the option to use TLS. If the client tries to use STARTTLS, the option
should be rejected. This is to satisfy US FCC rules regarding the use of
encryption over certain radio frequencies.
* All other internal clients
2018 Sep 17
2
Using both starttls and ssl in passdb on proxy results in timeouts
Hi List,
I have a dovecot which proxies to different backends depending on an entry in a mysql-database. The mysql-query sets ?ssl? to ?any-cert? and this works fine. But this causes me a problem: sieve-backends only support STARTTLS and if I set ?ssl? to ?any-cert? (or yes), it will attempt a TLS-connection to the sieve-backends, which fails.
My attempt was to alter the query to include
2020 Feb 10
2
starttls for some services only
Hi,
I would like to disable offering starttls to clients for certain dovecot
services.
Background is that I want to do let a load balancer do the TLS stuff
right on connect time and let dovecot only do plain imap without
offering starttls (because the clients do imaps actually). Getting rid
of the starttls feature offering works only if I set ssl = no globally
only. Setting it in the service
2017 Nov 23
3
Dovecot LMTP Proxy + STARTTLS?
Hi
I got dovecot 2.2.26 on a Centos7 with latest updates. Dovecot is
configured to act as director and delivers to my two backend servers.
I enabled lmtp proxy on director to listen on port 24.
Now I see in msg headers that the connection to the lmtp proxy uses
STARTTLS but the connection from proxy to backend seems to be
unencrypted. Is it possible to enforce the use of STARTTLS in the
2009 Jan 15
3
Enforcing STARTTLS for all mechs while disabling imaps
Hi all,
Is there a way to enforce STARTTLS for all connections, regardless their
authentication mechanism? disable_plaintext_auth only takes care of the auth
conversation, but I would like to have all communication encrypted.
As far as I can see, this would only be possible when using imaps and
disabling imap. However, I would like to have the other way around;
disabling imaps and using imap for
2010 May 24
2
STARTTLS does not seem to work
I believe I have the configuration set to use START TLS on IMAP4 (143)
and POP3 (110) ports. ?However, it does not seem to be working. ?Yet
"STARTTLS" is listed as a capability (which tells me I probably do
have it configured right).
In the session below, 172.30.0.24 is the mail server I'm putting up.
64.26.60.229 is an outside mail service. A similar thing happens on
POP3. The
2014 Aug 18
2
IMAP on 993/SSL or 143/STARTTLS?
Hi,
I have a postfix+dovecot-2.2.13 system and have configured it to support
IMAPS on 993 with SSL/TLS. I'm noticing with users using Thunderbird, the
autodetect defaults to IMAPS on 143 with STARTTLS.
Which is preferred? Which is more secure? Which is more common?
Why would someone choose one over the other?
Can I ask the same question about SMTP and submission? Why would one choose
587
2007 Jan 11
2
STARTTLS: read error=generic SSL error (0)"
Hi All,
I am runnig sendmail 8.12.8. I am getting the below error.
[root at mail MailScanner]# tail -f /var/log/maillog
Jan 11 11:20:40 mail sendmail[10646]: STARTTLS: read error=generic SSL error
(0)
Jan 11 11:20:41 mail last message repeated 22494 times
Jan 11 11:20:41 mail sendmail[10646]: STARTTLS: read error=generic SSL error
(0)
Jan 11 11:20:41 mail last message repeated 8894 times
Jan 11
2004 Jan 06
3
SSL and STARTTLS
I wanted to enable SSL on some alternate ports so that a limited number
of people could try SSL access. But doing so enabled STARTTLS in
IMAP, so that all IMAP users got surprised (at least those whose
clients attempted to use it automatically).
e.g.:
# IP or host address where to listen in for SSL connections. Defaults
# to above non-SSL equilevants if not specified.
imaps_listen =
2007 Jan 12
1
Entourage X and Sendmail STARTTLS on CentOS 4.4
I have a user who has Mac OS 10.4.8 with Entourage X. The email server
is sendmail 8.13.8 and is setup to use STARTTLS on a CentOS 4.4 system.
It appears from everything I have googled that only Entourage 2004 will
properly function with STARTTLS. Has anybody any experience with
Entourage X ... specifically is there something I am missing regarding
the CentOS server setup or are all Entourage
2011 Apr 09
1
143 STARTTLS/ 993 SSL/TLS query
I'm testing my new dovecot server with Thundirbird
I can have it working on
port 143 with STARTTLS, or on
port 993 with SSL/TLS
my uderstanding is that on 993 I get encrypted 'password and mail transfer'
(yes ?)
so what happens if I use 143 with STARTTLS, is that equivalent to port 993
if STARTTLS is used ?
thanks for any insights..
--
Voytek
2017 Nov 23
1
[SPAMMY]Re: Dovecot LMTP Proxy + STARTTLS?
NOTE: LMTP/doveadm proxying doesn't support SSL/TLS currently - any ssl/starttls extra field is ignored
https://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy
Am 23. November 2017 09:31:41 MEZ schrieb Tobi <tobisworld at gmail.com>:
>Hi
>
>I got dovecot 2.2.26 on a Centos7 with latest updates. Dovecot is
>configured to act as director and delivers to my two backend
2020 Feb 10
2
starttls for some services only
Hi Aki,
On 10.02.20 17:03, Aki Tuomi wrote:
> Try setting
>
> login_trusted_networks = lb-ip/32
>
> See?
> https://doc.dovecot.org/settings/dovecot_core_settings/#login-trusted-networks
I do have login-trusted_networks set already. Along with the proxy
protocol (haproxy_trusted_networks = lb-ip) I had to set
login_trusted_networks to 0.0.0.0/0 actually because the proxy
2006 May 09
2
Dovecot 1.0beta7: STARTTLS/SSL not wanting to start
Greetings -
I have been looking at Dovecot with a view to migrating us to it from the
Washington IMAP server on our Sun systems.
To start our testing we first of all installed the pre-built version of
Dovecot from the Blastwave (www.blastwave.org) community supported packaged
software site.
This was Dovecot 0.99.10.4 and we successfully got it working in our test
environment: at first just
2008 Nov 28
2
Sendmail - STARTTLS not appear on one client
Hi,
I have Sendmail configured to use STARTTLS for authentication. On all
internet connections and computers (that I have tested) works
connection over encrypted SMTP flawlessly. Today I was setting up mail
client on PC of my customer and standardily checked boxes, that I want
to use SSL for POP3 and SMTP. Next I wanted to check configuration (by
sending email from this mailbox to this mailbox)
2013 Sep 12
1
Problem getting a dovecot proxy to connect to another dovecot machine via STARTTLS
Hi,
I'm having a bit of a problem trying to setup a dovecot proxy. I have a
setup with two nodes. One is a working Dovecot/Postfix mail server (node
a). The other is running a dovecot proxy and roundcube webmail.
Currently I can telnet to port 143 (or openssl s_client to port 993) to
localhost on node b. I can then login to a test account on node a. This all
works.
However, once I instruct
2014 Nov 21
3
Outlook Express and STARTTLS
I have one user that uses Outlook Express. Not only do I not use it, I
don't have any systems here that can easily use it. I bit of a challenge.
I am strictly enforcing STARTTLS or TLS for SMTP/POP3/IMAP connections.
SO far a google search has not shown me how to configure this for a
user. Anyone have a pointer to instructions so I can talk the person
through the changes?
2011 Jan 10
1
enforce STARTTLS on port 110 with POP3?
Hi there,
We are using DoveCot 1.0.7. User will use POP3 or POP. We want to force
user to securely send their credential and keep a secure connection
between us and them. We can do TLS/SSL on port 995, or STARTTLS on port
110.
The problem is that we have no way to enforce STARTTLS on 110, user can
connect to DoveCot on port 110, sending user credential without STARTTLS
(thus insecure).
2014 Nov 22
3
Outlook Express and STARTTLS
Am 21.11.2014 um 22:29 schrieb Reindl Harald:
>
> Am 21.11.2014 um 22:24 schrieb Robert Schetterer:
>> Am 21.11.2014 um 20:59 schrieb Robert Moskowitz:
>>> I have one user that uses Outlook Express. Not only do I not use it, I
>>> don't have any systems here that can easily use it. I bit of a
>>> challenge.
>>>
>>> I am strictly
2004 Jul 19
1
Failed to issue the StartTLS instruction: Connect error
Hi,
I have two LDAP Servers with similar configurations.
The main difference is that one runs Linux Fedora 1 and
the other Linux Fedora 2. The Fedora 2 server runs
correctly whilst the Fedora 1 LdAP doesn't with the error:
Failed to issue the StartTLS instruction: Connect error.
Following is an example of error message on Fedora 1.
[root@otr etc]# net getlocalsid
[2004/07/18 21:20:09, 0]