[Dovecot] Using plaintext auth and SSL

Florian Zeitz florob at babelmonkeys.de
Tue Mar 20 04:26:12 EET 2012


Am 20.03.2012 01:16, schrieb Eliezer Croitoru:
> On 20/03/2012 01:37, Jeff Simmons wrote:
>> On Monday, March 19, 2012 04:16:46 pm you wrote:
>>> On 3/19/2012 4:04 PM, Jeff Simmons wrote:
>>>> I'm working with a company that presently has a Linux mailserver which
>>>> all users have (no shell) accounts on. Mail is accessed via pop3 with
>>>> plaintext authentication. They want to move to a system using imap with
>>>> SSL. I'm building them a new server. I'd like to offer both for a while
>>>> so we can work the bugs out and migrate users over to SSL imap over
>>>> time. It appears that in order to limit the imap connections to SSL I
>>>> will need to run two separate instances of Dovecot. Is this correct?
>>>
>>> I only have SSL or TLS connections enabled and I only have one copy of
>>> Dovecot running.
>>
>> Let me rephrase that. I want to run plaintext authentication pop3 and
>> ssl/tls
>> only authentication imap. The 'allow plaintext authentication'
>> configuration
>> directive appears to be global, meaning I will need to run two
>> instances of
>> dovecot for a while. Is that correct, or can this be done on a single
>> instance
>> of dovecot?
>>
> there is no connection between the plaintext auth to the ssl\tls layer.
> you can just change the in the service section of the 10-master.conf
> file of the imap to no imap at all and use only imaps listener with port
> for your choose such as 143 or 993 and you will have a only imap over ssl.
> 
Because it is going to drive me insane if I don't ask:
Is there really no way to archive this with a modern (aka. STARTTLS
based) IMAP setup?


More information about the dovecot mailing list