Hello, is there any way to disallow client-initiated renegotiation at
the dovecot? I haven't found any mention of this feature within source
code as well as at the documentation.
I am asking about it because without this feature mail server is
vulnerable to a TLS renegotiation DoS attack which
I would like to offer to implement a feature to reject SSL handshakes
for a default certificate-key pair for efficiently discarding bot
requests (i.e. such requests that provide invalid/not configured
hostname or do not specify at all, like when doing request to the IP
address directly).
Ngin
On 2/29/24 15:54, Andreas via dovecot wrote:
Thanks! Can you say where the mapping from the user part in "From" addresses to
actual mail(sub)dir goes after switching to LMTP?
Currently, I've got a `virtual_mailbox_maps` in Postfix main.cf for this
purpose. Is there something similar in Dovecot
