Re: [SOGo] Still no plan to support SMTP over TLS?
> On Sep 9, 2016, at 3:31 PM, Christian Mack (christian.m...@uni-konstanz.de) > wrote: > > Or use the workaround mentiond in the bug: > stunnel > (Because of that the urgency to implement TLS in SOGo is very low.) IMO, SASL AUTh and SMTP over TLS should be urgent, because: *) it makes SOGo more flexible to connect to SMTP server *) secure connection is so important today *) As mentioned in another sogo mailing list thread, each activesync mobile client requires 20-40MB memory, isn't it normal to run SOGo on a more powerful server to handle more EAS clients? *) "stunnel"? Postfix (and other MTAs) offers submission (and deprecated SMTPS) for years, and it's standard protocol, why stunnel? Why not improve SOGo to "fix" it? Zhang Huangbin, founder of iRedMail project: http://www.iredmail.org/ Time zone: GMT+8 (China/Beijing). -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Still no plan to support SMTP over TLS?
users-requ...@sogo.nu wrote on 08.09.2016 16:38:55: > > Just wondering do we have any plan to support SMTP over TLS in SOGo? > Any reason why we don't implement this? ... > We force all end users to send email through port 587 (submission, > SMTP over TLS). How do you configure secure SMTP connection in SOGo > if you run SOGo on a separate server without local MTA? I think there are more important things to implement. Many will run it with a local MTA anyway. And if not, then the MTA will usually be within the same local (!) network. If someone is able to sniff there, you have a dramatic problem anyway. And if someone can sniff the local network, he can probably much easier directly hack into your server, too. Kai-Uwe Rommel -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Still no plan to support SMTP over TLS?
Hello Am 09.09.2016 um 08:05 schrieb André Schild (an...@schild.ws): > > Am 08.09.2016 um 16:38 schrieb Zhang Huangbin (z...@iredmail.org): >> Dear developers, >> >> Just wondering do we have any plan to support SMTP over TLS in SOGo? > They probably would accept a sponsoring to implement this feature... >> Any reason why we don't implement this? > Needs time to implement/test/support it, and the endusers won't have any > benefit from it. > >> >> There's a 7-year old ticket, #31, can we have some love to secure smtp >> connection? >> https://sogo.nu/bugs/view.php?id=31 >> >> We force all end users to send email through port 587 (submission, >> SMTP over TLS). How do you configure secure SMTP connection in SOGo if >> you run SOGo on a separate server without local MTA? > Why no local MTA? > You can then use a smart relay to your "regular" mailserver > Or use the workaround mentiond in the bug: stunnel (Because of that the urgency to implement TLS in SOGo is very low.) Kind regards, Christian Mack -- Christian Mack Universität Konstanz Kommunikations-, Informations-, Medienzentrum (KIM) Abteilung Basisdienste 78457 Konstanz +49 7531 88-4416 smime.p7s Description: S/MIME Cryptographic Signature
Re: [SOGo] Still no plan to support SMTP over TLS?
Hello Zhang, Am 08.09.2016 um 16:38 schrieb Zhang Huangbin (z...@iredmail.org): Dear developers, Just wondering do we have any plan to support SMTP over TLS in SOGo? They probably would accept a sponsoring to implement this feature... Any reason why we don't implement this? Needs time to implement/test/support it, and the endusers won't have any benefit from it. There's a 7-year old ticket, #31, can we have some love to secure smtp connection? https://sogo.nu/bugs/view.php?id=31 We force all end users to send email through port 587 (submission, SMTP over TLS). How do you configure secure SMTP connection in SOGo if you run SOGo on a separate server without local MTA? Why no local MTA? You can then use a smart relay to your "regular" mailserver André -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] Still no plan to support SMTP over TLS?
Dear developers, Just wondering do we have any plan to support SMTP over TLS in SOGo? Any reason why we don't implement this? There's a 7-year old ticket, #31, can we have some love to secure smtp connection? https://sogo.nu/bugs/view.php?id=31 We force all end users to send email through port 587 (submission, SMTP over TLS). How do you configure secure SMTP connection in SOGo if you run SOGo on a separate server without local MTA? Zhang Huangbin, founder of iRedMail project: http://www.iredmail.org/ Time zone: GMT+8 (China/Beijing). -- users@sogo.nu https://inverse.ca/sogo/lists
