On Fri, 03 Jan 2014 10:08:15 -0500 Charles Marcus wrote: > On 2014-01-03 8:32 AM, Charles Marcus <cmar...@media-brokers.com> wrote: > > > > Ok, up until now, I've only always allowed IMAPS connections to > > dovecot on port 993. > > > > I want to also start allowing clients to user port143+STARTTLS, but I > > walso want to make sure both ports are locked down to ONLY allow > > secure connections. > > And I just had an idea, but don't know if it is possible. > > Can I offer one namespace on one port (ie, SSL/993), and a different > namespace on the other port (STARTTLS/143)?
You dont' need 2 namespaces.
In 10-auth.conf set "disable_plaintext_auth = yes"
My 10-master.conf contains
| service imap-login {
| inet_listener imap {
| port = 143
| }
| inet_listener imaps {
| port = 993
| ssl = yes
| }
And this works.
--Frank Elsner
pgpUD5rT29dHJ.pgp
Description: PGP signature
