[Dovecot] Disabled pop3-login

[Tamsy]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Reindl Harald wrote the following on 26.08.2013 07:56:
>
>
> Am 26.08.2013 02:46, schrieb Tamsy:
>> LuKreme wrote the following on 26.08.2013 06:42:
>>> In my dovecot.conf I do not have pop3-login anabled (since I do not
support pop3):
>
> as said already, it's one line in dovecot.conf
> protocols = imap
>
>> Besides of the above, if you are not going to use POP3 at all I would
>> close port 110 and port 995 with DROP to let to go these accesses to
>> nowhere
>
> besides the fact that unused services should not listen at all
> this advice in case of firewalls is wrong - close *any* port
> as default and open *only* the one you are using
>
> not the other direction DROP specific ones you do not want
>
> frankly, there are 65535 possible ports
>
>
>
Reindl is correct like almost always. But isn't it the basics anyway
when going for IPtables, to drop all at first and open one by one as
needed? Obviously LuKreme has at least port left 110 open and what I
ment is to close it right away to let these thousands (tens of
thousands) accesses to go nowhere....




-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.20 (MingW32)
 
iQEcBAEBAgAGBQJSGqtuAAoJEKYXVM1dyOfZvKYH/2MSgMAyq6hyt1g8SmEkdVpC
XL4SYjg2Fj0TYo6NjMSUTo7FWwz+8rO3cvqKeoMUzv4vwzzdHnG52LVRq71NrwwY
nbL1IKN/HsQp7SfF9Gy+H5l9tkTiXrPZU6/6Ku0DQ7JtLCsi6Q0KP9+66ZnW+uqH
T82Z0KlJDVizFxeSPb4MiNmIj/AaOe+brFX8iXisXuSG4toZFkL2VtWaVYsIW3+V
+9ao+8mw4IJt/9F9t40YUsINqokWkbhG5VZKdln93lUd4m/+LbTUPwEMG+PAsmHE
MoysHKbmBniPvLvIlj7oNIeZROYuxSm1fndHlXewlq/vD/Qt9TBHYN3S/UmtN3I=
=IuF8
-----END PGP SIGNATURE-----

-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x5DC8E7D9.asc
Type: application/pgp-keys
Size: 1733 bytes
Desc: not available
URL: <http://dovecot.org/pipermail/dovecot/attachments/20130826/6ed0bc0b/attachment-0001.bin>