Hallo. Am Montag, 8. Dezember 2008 schrieb Paweł Tęcza: > We need to protect the passwords of our users strongly, so they should > use secure connection (via SSL) to ESMTP/POP3/IMAP servers. But how can > we force the users to use STARTTLS for "normal" ESMTP server which > listens on port 25? STARTTLS is only option here, so some users can > bypass our security policy.
Yes, same policy here. :) We do not offer *any* login without secure connection. For SMTP, we have set: $ grep ^ESMTPAUTH /etc/courier/esmtpd ESMTPAUTH="" ESMTPAUTH_TLS="PLAIN LOGIN" So courier does not offer any authentication methods before switching to TLS mode. Gruß, Bernd -- Hängt die Grünen, solange es noch Bäume gibt! - Mehmet Scholl (dt. Fußballer)
signature.asc
Description: This is a digitally signed message part.
------------------------------------------------------------------------------ SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
_______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
