On Wed, 2 Apr 2003, Ralf Utermann wrote:
> On Tue, Apr 01, 2003 at 01:37:16PM +0200, Dirk-Willem van Gulik wrote: > > > > (This time to the right list) - Arguably disabling plaintext passwords for > > non-SSL inbound TCP connections from the bad outside world is useful. > > > > However - (local) tools such as Squirrelmail (www.squirrelmail.org) are > > unable to do SSL on 993 outright or do an upgrade StartTLS on 143. > > we use Squirrelmail 1.2.11 over stunnel with imap. No problems. I think the > next stable version 1.4 is able to do SSL on it's own (RC2 is out). Aye - but without fairly significant connection cashing - SSL, even over a loopback interface, is a bit of an expense; esp. when you need to setup and tear down as often as SQ does (right now). DW.
