Re: [Dovecot] securing dovecot proxy connections

2007-09-06 Thread Ken A
WJCarpenter wrote: ka> per another current thread (o/s tuning for imap), I've installed ka> imapproxy, and it supports starttls to the backend imap server. It ka> doesn't use encryption on the incoming connections though, since ka> they are presumably from localhost (squirrelmail). Ken That's a

Re: [Dovecot] securing dovecot proxy connections

2007-09-05 Thread Marcin Michal Jessa
WJCarpenter wrote: > wjc> Is there a way to configure dovecot's internal proxy connections > wjc> to use STARTTLS or some other SSL/TLS level of security? > wjc> (Without a > > mmj> Just create encrypted tunnel between the peers and send your > mmj> traffic through it. IPSec, ssh etc.. > > Thanks

Re: [Dovecot] securing dovecot proxy connections

2007-09-05 Thread WJCarpenter
ka> per another current thread (o/s tuning for imap), I've installed ka> imapproxy, and it supports starttls to the backend imap server. It ka> doesn't use encryption on the incoming connections though, since ka> they are presumably from localhost (squirrelmail). Ken That's an interesting thought

Re: [Dovecot] securing dovecot proxy connections

2007-09-05 Thread Ken A
WJCarpenter wrote: The wiki page says this: "The connections created to the destination server can't be TLS/SSL encrypted.". Hrmm. Right now, with perdition, I'm forcing the use of STARTTLS on the internal connections. I'd just as so

Re: [Dovecot] securing dovecot proxy connections

2007-09-05 Thread WJCarpenter
wjc> Is there a way to configure dovecot's internal proxy connections wjc> to use STARTTLS or some other SSL/TLS level of security? wjc> (Without a mmj> Just create encrypted tunnel between the peers and send your mmj> traffic through it. IPSec, ssh etc.. Thanks for the suggestion. I had though

Re: [Dovecot] securing dovecot proxy connections

2007-09-05 Thread Marcin Michal Jessa
WJCarpenter wrote: > The wiki > page says this: "The connections created to the destination server > can't be TLS/SSL encrypted.". > > Hrmm. Right now, with perdition, I'm forcing the use of STARTTLS on > the internal connections. I'd j

[Dovecot] securing dovecot proxy connections

2007-09-05 Thread WJCarpenter
The wiki page says this: "The connections created to the destination server can't be TLS/SSL encrypted.". Hrmm. Right now, with perdition, I'm forcing the use of STARTTLS on the internal connections. I'd just as soon get rid of perditi