Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 10 Feb 2000 00:44:41 -0500
From:      "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com>
To:        Andrew Otwell <andrew@networkcomputerz.com>
Cc:        "freebsd-questions@FreeBSD.ORG" <freebsd-questions@FreeBSD.ORG>
Subject:   Re: IMAP over SSL
Message-ID:  <20000210004441.C69482@cc942873-a.ewndsr1.nj.home.com>
In-Reply-To: <38A19D6D.51027FD@networkcomputerz.com>; from andrew@networkcomputerz.com on Wed, Feb 09, 2000 at 12:01:33PM -0500
References:  <38A19D6D.51027FD@networkcomputerz.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Wed, Feb 09, 2000 at 12:01:33PM -0500, Andrew Otwell wrote:
> Anyone know of an IMAP server that'll run over SSL and encrypt all
> server=>client transfers? The clients I know of that support this is
> Netscape Messenger (my pref) and MS Outlook Express. There's probably
> many more. 

This is very easy to do using stunnel from the ports. On the IMAP
server, go to the ports and build stunnel, then just,

  # stunnel -d 993 -l /usr/local/libexec/imapd -- imapd

And stunnel will wait for SSL connections on port 993. It will then
start up IMAP (analogous to inetd) and you are going.

One caveat, I did have weird problems getting stunnel to work properly
in daemon mode. I hope it was just some weirdness due to the fact I am
running it on 2.2.8-STABLE. If you have the same problem, let me
know. I found a way to fix it for my case.

As an added bonus, I start up a couple of stunnels at boot from
/usr/local/etc/rc.d, here a script,

#!/bin/sh
#
# imapsd - cjc, 2000/01/17: Runs secure IMAP by tunneling
#          with stunnel(8)

DAEMON=/usr/local/libexec/imapd
CMD=imapd
SPORT=993
STUNNEL=/usr/local/sbin/stunnel
PIDFILE=/var/run/stunnel.imapd.pid

case "$1" in
    'start')
        if [ -x $STUNNEL -a -x $DAEMON ]; then
            $STUNNEL -d $SPORT -l $DAEMON -- $CMD
            echo -n " `basename $0 | sed 's/.sh$//'`"
        fi
        ;;
    'stop')
        if [ -f $PIDFILE ]; then
            kill -TERM `cat $PIDFILE`
        fi
        ;;
    *)
        echo "Usage: `basename $0` {start|stop}"
        exit 1
        ;;
esac

exit 0

#End - Not Reached

-- 
Crist J. Clark                           cjclark@home.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000210004441.C69482>