I've had great success with OpenSSL and stunnel. I run smtps, pop3s, and
imaps this way. Essentually, you tell stunnel to make a tunnel on localhost
from (say) 465 (smtps) to 25 (smtp). Configure Outlook, Outlook Express, or
Netscape Communicator to then use the appropriate secure service, and
connect to the right port (i.e., 465) on your server.
For POP and IMAP, I have blocked the plain-text ports, and only allow secure
connections. ;-)
I'm not sure if stunnel can support client certificates or not, so you'll
still have to use the normal authentication methods for the particular
protocol you wish to tunnel.
OpenSSL information can be found at www.openssl.org. I believe there is a
link to the 'stunnel' program there as well. Both build, install, and work
out of the box on my NetBSD system...they seem pretty portable.
Scott
----- Original Message -----
From: Adam D . McKenna <[EMAIL PROTECTED]>
To: K. Brant Niggemyer <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Monday, August 09, 1999 1:09 PM
Subject: Re: Secure pop
> You can do tunneling with both of the commerically available SSH packages
for
> windows. (F-Secure and SecureCRT)
>
> --Adam
>
> On Mon, Aug 09, 1999 at 03:46:39PM -0400, K. Brant Niggemyer wrote:
> > Yes, I am aware that you can do tunneling with ssh, but I am looking for
a
> > way to do this with MS-dumb software, also. I didn't think you could do
ssh
> > forwarding in Windows. That is why I was looking for a way to do ssl.
> >
> > Brant
> >
> > -----------
> > The simplest way is to simply use normal POP, but forwarded over an
> > encrypted tunnel in an SSH
> > session. I do that here, and it works quite well, with any POP mail
client.
> > Setting
> > up the port forwarding on the client is very simple.
> >
> > Charles
> > --
> > ----------------------------------------------------
> > Charles Cazabon <[EMAIL PROTECTED]>
> > Any opinions expressed are just that -- my opinions.
> > ----------------------------------------------------
> >
> >
>
