Vesta Control Panel - Forum

Community Forum
https://forum.vestacp.com/

Enforcing TLS/SSL on mail service?

https://forum.vestacp.com/viewtopic.php?f=12&t=5741

Page 1 of 1

Enforcing TLS/SSL on mail service?

Posted: Thu Sep 04, 2014 10:37 am
by LightPeak
As the topic says, how do I enforce TLS/SSL for all email traffic with a signed certificate?
I do not wish emails to be sent through plaintext.

Re: Enforcing TLS/SSL on mail service?

Posted: Fri Sep 05, 2014 1:59 pm
by LightPeak
Any idea, anyone?

Re: Enforcing TLS/SSL on mail service?

Posted: Fri Sep 12, 2014 9:13 am
by iMatt
Hi,

I am a new user of VestaCP and have a few ideas that may help you.

Option 1, open only SSL ports in your firewall (465 for SMTP, 993 for IMAP and 995 POP).
Option 2, update configuration files :

/etc/dovecot/conf.d/10-auth.conf
disable_plaintext_auth = yes

/etc/dovecot/conf.d/10-master.conf
here I guess you can remove inet_listener imap {} and inet_listener pop3 {}

I didn't try it :)

For the SMTP configuration, you may want to look at in the directory /etc/exim4
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/