While I've never used Stunnel for a SSL POP3 client, a quick search
brings these instructions:
----
For [*nix] e-mail clients which don't support SSL:
1. install stunnel on the client machine;
2. if you want to check the server certificate (optional, but
recommended), copy the server CA certificate in
/usr/local/ssl/certs/CAcert.pem and:
> cd /usr/local/ssl/certs/
> ln -s CAcert.pem `/usr/local/ssl/bin/openssl x509 \
-noout -hash < CAcert.pem`.0
3. run stunnel using the command (tipically during the startup):
> stunnel -c -v 2 -d 143 -r imap_server:993
> stunnel -c -v 2 -d 110 -r pop3_server:995
where the option -v 2 has to be specified only if you executed the
previous point.
4. Configure the e-mail client so that it accesses the imap (or pop3)
port of localhost.
For [Windows] e-mail clients which don't support SSL:
1. install stunnel on the client machine;
1. download winstun.zip
2. extract ssleay32.dll, libeay32.dll and stunnel.exe in the
same directory (if you prefer, the dlls can be moved in \windows\system).
2. run stunnel using the command:
stunnel -c -d 143 -r imap_server:993
stunnel -c -d 110 -r pop3_server:995
3. Configure the e-mail client so that it accesses the imap (or pop3)
port of localhost.
----
It appears that Stunnel is indeed the solution.
--John
Tracy wrote:
> Paul,
>
> Short answer - *As far as I know* Xmail's pop3 retrieval does *not*
> natively support SSL. This means you'd have to use an external SSL
> provider (such as stunnel).
>
> A more detailed answer is somewhat beyond my capabilities, as I use
> stunnel for inbound (server-type) connections, not for outbound. But I
> do know stunnel can support outbound (client-type) connections - and I
> *think* there was an example on their site on how to set it up (but it's
> been over a year since I was there, so....)
>
> Tracy
>
> Paul Allen wrote:
>
>> Ok, dude, that was less than helpful, so perhaps you didn't understand the
>> question or the situation. Let me try to clear it up for you...
>>
>> Short version:
>> Gmail is the HOST, xmail is the CLIENT.
>>
>>
>> Long version:
>> Gmail requires an SSL connection for POP3 access. Any other mail clients
>> I've used require some special options for connecting to the POP3 server
>> over SSL. Now, I'm not a network engineer or even have any more than a
>> slight idea of how this works, but this tells me that it may be an entirely
>> different communication protocol than just open up a port and start sending
>> commands.
>>
>> Since Xmail is acting in the place of any other mail client (Outlook,
>> Eudora, etc.), I would assume the same options for SSL would apply. Is this
>> true? If this is not the case, do I just specify port 995 as part of the
>> POP3 host address and all is good? Are there any special instructions that
>> I overlooked during setup to retrieve mail from a POP3 host that requires an
>> SSL connection?
>>
>> I don't want to use SSL for what xmail is serving, I need to use SSL to
>> retrieve my external POP3 mail as the host requires it. From the
>> information I got from their website (http://www.stunnel.org), it would
>> appear that I would use stunnel to encrypt the connection between my xmail
>> server and it's clients, not the other way around where xmail is the client
>> and the POP3 host is already encrypted. If this is an incorrect assumption,
>> perhaps someone can trow me a bone and give up a little more information on
>> how to accomplish what I'm trying to do.
>>
>> Thanks,
>>
>> {PA}
>>
>>
>>
>> -----Original Message-----
>> From: [EMAIL PROTECTED]
>> [mailto:[EMAIL PROTECTED] Behalf Of XTechie
>> Sent: Thursday, June 15, 2006 12:49 AM
>> To: [email protected]
>> Subject: [xmail] Re: External POP3 on SSL
>>
>>
>>
>> Duhh...
>>
>>
>> stunnel...?
>>
>> Paul Allen wrote:
>>
>>> I've done it! I have Xmail installed and running wonderfully. I'd like
>>>
>> to
>>
>>> set my family up on Gmail accounts, so we don't have to worry about
>>> modifying the pop3 links in the event that we change ISPs. The one
>>>
>> problem
>>
>>> that I have is I can't find any documentation regarding external POP3 over
>>> SSL. Is this possible? If so, can someone guide me to where to find it
>>>
>> in
>>
>>> the manual or even create a short HOWTO:?
>>>
>>> Thanks
>>>
>>> {PA}
>>>
>>>
>>> -
>>> To unsubscribe from this list: send the line "unsubscribe xmail" in
>>> the body of a message to [EMAIL PROTECTED]
>>> For general help: send the line "help" in the body of a message to
>>> [EMAIL PROTECTED]
>>>
>>>
>>>
>>>
>> -
>> To unsubscribe from this list: send the line "unsubscribe xmail" in
>> the body of a message to [EMAIL PROTECTED]
>> For general help: send the line "help" in the body of a message to
>> [EMAIL PROTECTED]
>>
>>
>> -
>> To unsubscribe from this list: send the line "unsubscribe xmail" in
>> the body of a message to [EMAIL PROTECTED]
>> For general help: send the line "help" in the body of a message to
>> [EMAIL PROTECTED]
>>
>>
>>
>
> -
> To unsubscribe from this list: send the line "unsubscribe xmail" in
> the body of a message to [EMAIL PROTECTED]
> For general help: send the line "help" in the body of a message to
> [EMAIL PROTECTED]
>
>
>
-
To unsubscribe from this list: send the line "unsubscribe xmail" in
the body of a message to [EMAIL PROTECTED]
For general help: send the line "help" in the body of a message to
[EMAIL PROTECTED]
