Re: [Dovecot] MOSTLY SOLVED: Re: client limit and STARTTLS
7 Apr
2013
7 Apr
'13
1:44 p.m.
Am 07.04.2013 12:36, schrieb David Benfell:
http://wiki2.dovecot.org/LoginProcess
High-performance mode: It works by using a number of long running login processes, each handling a number of connections. This loses much of the security benefits of the login process design, because in case of a security hole (in Dovecot or SSL library) the attacker is now able to see other users logging in and steal their passwords, read their mails, etc.
Default client_limit * process_limit = 1000*100 = 100k connections
vsz_limit should be increased to avoid out of memory errors, especially if you're using SSL/TLS.
4495
Age (days ago)
4495
Last active (days ago)
0 comments
1 participants
participants (1)
-
Reindl Harald