Date: 21 Jan 2001 20:45:24 -0500 From: Arcady Genkin <antipode@thpoon.com> To: freebsd-questions@freebsd.org Cc: cjclark@alum.mit.edu Subject: imap and pop3 via stunnel (was: UW-IMAP server and secure authentication) Message-ID: <87g0ic4ax7.fsf_-_@tea.thpoon.com> In-Reply-To: <20010121154230.Z10761@rfx-216-196-73-168.users.reflex> References: <87hf2s4hb7.fsf@tea.thpoon.com> <20010121154230.Z10761@rfx-216-196-73-168.users.reflex>
next in thread | previous in thread | raw e-mail | index | archive | help
"Crist J. Clark" <cjclark@reflexnet.net> writes: > I don't see why you can't use a self-signed cert. Provided you > distribute it securely (relative to what you are protecting and other > security measures), it is a fairly good solution. I basically want to disable any ways of connecting to my computer with user names/passwords sent in clear text. What do you mean by "distribute it securely"? > I have never used SSL within UW IMAP. However, I set up a mailserver > which used stunnel (in the ports) to get SSL access to UW IMAP. Making > a self-signed cert with stunnel was painless and a reasonable solution > for that organization. This is great! I just installed stunnel and had imapd and ipop3d working with it in no time. I'm using the scurity certificate generated by "make cert". Thanks a lot, Christ! > Almost all of the users were using M$ Outlook Express as a MUA. A > few Netscape Messenger users. Neither had an problems. I just had a MS Outlook Express user confirm successful POP3 retrieval over SSL. I'm happy. The only thing that's bothering me is your phrase about distributing the certificate: I did not send the user anything, he was just able to connect by changing mail server configuration in his mailer. Was the connection secure in this case? Many thanks, -- Arcady Genkin Don't read everything you believe. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?87g0ic4ax7.fsf_-_>