Date: Sun, 21 Jan 2001 15:42:30 -0800 From: "Crist J. Clark" <cjclark@reflexnet.net> To: Arcady Genkin <antipode@thpoon.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: UW-IMAP server and secure authentication Message-ID: <20010121154230.Z10761@rfx-216-196-73-168.users.reflex> In-Reply-To: <87hf2s4hb7.fsf@tea.thpoon.com>; from antipode@thpoon.com on Sun, Jan 21, 2001 at 06:27:24PM -0500 References: <87hf2s4hb7.fsf@tea.thpoon.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Jan 21, 2001 at 06:27:24PM -0500, Arcady Genkin wrote: > Having read the documentation on UW imap server I understand that I > need to purchase an SSL certificate to use SSL build of the server. Really? > Is there any way I can implement secure authentication mechanism (just > encrypted username and passwords) without having to buy the > certificate? If yes, will this mechanism be supported by popular > MS-based mail readers? I don't see why you can't use a self-signed cert. Provided you distribute it securely (relative to what you are protecting and other security measures), it is a fairly good solution. I have never used SSL within UW IMAP. However, I set up a mailserver which used stunnel (in the ports) to get SSL access to UW IMAP. Making a self-signed cert with stunnel was painless and a reasonable solution for that organization. Almost all of the users were using M$ Outlook Express as a MUA. A few Netscape Messenger users. Neither had an problems. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010121154230.Z10761>