While the stunnel connection wrapper is a quick solution to secure connection problem, it has one major problem.
It lacks TLS secure connection negotiation (imap:STARTTLS, pop3:STLS) which allows you to upgrade connections to ports imap and pop3 to be secure connections by issuing the command to start TLS connection negotiation. This cannot be achieved with a stunnel wrapper because stunnel requires a secure connection before making the subsequent connection to dedicated SSL pop3s(995) and imaps(993) ports. You need to be able to connect directly to imap(143) or pop3(110) ports directly and issue a STARTTLS/STLS command to trigger secure connection upgrade. This forces the SSL capability to be embedded into the imapd and pop3d daemons in order to support this feature. > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On > Behalf Of Blake Mitchell > Sent: Sunday, April 06, 2003 4:11 PM > To: [email protected] > Cc: [EMAIL PROTECTED] > Subject: Re: [Dbmail] Road map > > Richard, > > You can use stunnel for both imaps and pop3s. I have mine set to the > following, for securer IMAP: > > stunnel -p ./mail.pem -S 0 -t 3600 -d imaps -r localhost:imap -s ssl > -g ssl > > and for secure POP3: > > stunnel -p ./mail.pem -S 0 -d pop3s -r localhost:pop3 -s ssl -g ssl > > You can find info at http://www.stunnel.org all about stunnel. I > used > http://www.junkcert.com to generate the certs I used. > > Cheers, > Blake > > Richard Houston wrote: > > >... > >Can I add imaps and pop2s to the wish list and I strongly support > the > >documentation line item as well. > > > >Thanks > > > >Rich > > > > > > > > _______________________________________________ > Dbmail mailing list > [email protected] > https://mailman.fastxs.nl/mailman/listinfo/dbmail
