1

Topic: Disable enforcement of SSL auth when login in via POP & IMAP

==== Required information ====
- iRedMail version: v0.2.2
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQ
- Linux/BSD distribution name and version: Debian 6
- Related log if you're reporting an issue:
====

Hi guys. First of all, I know the security risks involved.
We need to migrate to iRedMail ASAP due to a bug in the current mail server & we can't configure now 250 clients with SSL auth (they are currently using non encrypted auth connections).

How can I allow this?
Then, with some time, we'll have the user reconfigure the workstations and enforce SSL again.
Thanks.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 (edited by starriol 2013-10-28 20:16:07)

Re: Disable enforcement of SSL auth when login in via POP & IMAP

BTW, I tried setting "disable_plaintext_auth = no" in /etc/dovecot/dovecot.conf and it didn't work for POP3

Edit: ups, forgot to read that I needed to set SSL to yes, not required.

Thanks Google! Haha!

3

Re: Disable enforcement of SSL auth when login in via POP & IMAP

We have a wiki tutorial describes how to allow insecure POP3/IMAP connection:
http://www.iredmail.org/wiki/index.php? … t.STARTTLS