* Jean-Daniel:
> One rational for this is to make sure broken clients don’t send clear
> text credential on port 143, even if STARTTLS is required.
If clients are broken, they can send clear text credentials to any port
and a network sniffer could record the content. Heck, one can do stupid
thing
> Le 14 avr. 2020 à 18:57, A. Schulze a écrit :
>
>
>
> Am 13.04.20 um 20:52 schrieb David Mehler:
>> Hello,
>>
>> Before I get in to my question is ssl on 993 or starttls on 143 better
>> from a security perspective?
>
> implicit TLS is recommended: https://tools.ietf.org/html/rfc8314#sec
On Tue, 14 Apr 2020, Ivo wrote:
Maybe this thread can help you with your first question :
https://dovecot.org/pipermail/dovecot/2014-August/097488.html
I was more or less going to say the same thing. Further to this,
it's more important to make sure your clients enforce SSL/STARTTLS
use by di
Am 13.04.20 um 20:52 schrieb David Mehler:
> Hello,
>
> Before I get in to my question is ssl on 993 or starttls on 143 better
> from a security perspective?
implicit TLS is recommended: https://tools.ietf.org/html/rfc8314#section-3
Andreas
* David Mehler:
> Before I get in to my question is ssl on 993 or starttls on 143 better
> from a security perspective?
On the server side, it makes little difference. STARTTLS just means a
number of extra bytes are exchanged while an encrypted connection is
being established. If you want to supp
Maybe this thread can help you with your first question :
https://dovecot.org/pipermail/dovecot/2014-August/097488.html
On 13.4.2020. 20:52, David Mehler wrote:
Hello,
Before I get in to my question is ssl on 993 or starttls on 143 better
from a security perspective?
I've noticed that I've go
Hello,
Before I get in to my question is ssl on 993 or starttls on 143 better
from a security perspective?
I've noticed that I've got a dovecot listener on port 993, below is my
doveconf -n output I don't have an imaps listener uncommented should I
do so and set it's port to 0? Will that disable
