On Wed, 23 Aug 2000 14:31:39 -0400, Karl Hoppel wrote:
>While waiting for a reply to my previous post,
>I successfully configured and tested SSLwrap
>for SSL connections to qpopper. The problem I see
>is the qpopper must be configured to allow plain text
>passwords because the SSLwrap pipes the connection
>back to the standard pop3 port. Is it possible to change
>the port for qpopper. If I changed it to an unused port and
>configured SSLwrap to pipe the SSL connection to the
>new port, then it would discourage non-SSL connections
>because qpopper would be listening to a non-standard port.
Only allow qpopper to listen on the loopback interface, to which
SSLwrap will connect. External machines won't get a connection to the
POP3 port. How are you starting qpopper? If inetd with TCP wrappers,
you can set this up in /etc/hosts.deny and /etc/hosts.allow.
Ken
mailto:[EMAIL PROTECTED]
http://www.sewingwitch.com/ken/
http://www.harrybrowne2000.org/
