Update howto/2-allow.insecure.pop3.imap.connection.md to mention how to allow insecure smtp service.
This commit is contained in:
parent
e35d6c1cc8
commit
7e562dc4fa
|
@ -8,7 +8,7 @@ We're working on migrating [old wiki documents](http://www.iredmail.org/wiki) to
|
|||
* [Amavisd + SpamAssassin not working, no mail header (X-Spam-*) inserted.](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/1-amavisd.no.x-spam.headers.md)
|
||||
* [Disable spam virus scanning for outgoing mails](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/1-disable.spam.virus.scanning.for.outgoing.mails.md)
|
||||
* [Quarantining](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/1-quarantining.md)
|
||||
* [Allow insecure POP3/IMAP connection without STARTTLS](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/2-allow.insecure.pop3.imap.connection.md)
|
||||
* [Allow insecure POP3/IMAP/SMTP connections without STARTTLS](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/2-allow.insecure.pop3.imap.smtp.connections.md)
|
||||
* [Allow user to send email without authentication](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/allow.user.to.send.email.without.authentication.md)
|
||||
* [Configure Thunderbird as mail client (IMAP, SMTP and global ldap address book)](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/configure.thunderbird.md)
|
||||
* [Ignore Trash folder in mailbox quota](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/ignore.trash.folder.in.quota.md)
|
||||
|
|
|
@ -1,14 +1,16 @@
|
|||
# Allow insecure POP3/IMAP connection without STARTTLS
|
||||
# Allow insecure POP3/IMAP/SMTP connections without STARTTLS
|
||||
|
||||
With default iRedMail setting, all clients are forced to use IMAPS and POPS (via
|
||||
STARTTLS) for better security by default. If your mail clients try to access
|
||||
mailbox via protocol POP3 (port 110) or IMAP (port 143) without TLS support,
|
||||
you will get error message like below:
|
||||
With default iRedMail setting, all clients are forced to use POP3/IMAP/SMTP
|
||||
services over STARTTLS for for better security by default. If your mail clients
|
||||
try to access mailbox via protocol POP3 (port 110) or IMAP (port 143) without
|
||||
TLS support, you will get error message like below:
|
||||
|
||||
```
|
||||
Plaintext authentication disallowed on non-secure (SSL/TLS) connections
|
||||
```
|
||||
|
||||
## Allow insecure POP3/IMAP connections
|
||||
|
||||
If you want to enable POP3/IMAPS without STARTTLS for some reason (again, not
|
||||
recommended), please update below two parameters in Dovecot config file
|
||||
`dovecot.conf` and restart Dovecot service:
|
||||
|
@ -29,3 +31,12 @@ Default and recommended setting configured by iRedMail is:
|
|||
disable_plaintext_auth=yes
|
||||
ssl=required
|
||||
```
|
||||
|
||||
## Allow insecure SMTP connection
|
||||
|
||||
Please comment out below line in Postfix config file `/etc/postfix/main.cf`
|
||||
and reload or restart Postfix service:
|
||||
|
||||
```
|
||||
smtpd_tls_auth_only=yes
|
||||
```
|
|
@ -1,7 +1,7 @@
|
|||
<html>
|
||||
<head>
|
||||
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
||||
<title>Allow insecure POP3/IMAP connection without STARTTLS</title>
|
||||
<title>Allow insecure POP3/IMAP/SMTP connections without STARTTLS</title>
|
||||
<link href="./css/markdown.css" rel="stylesheet"></head>
|
||||
</head>
|
||||
<body>
|
||||
|
@ -10,14 +10,15 @@
|
|||
<a href="http://www.iredmail.org" target="_blank">iRedMail web site</a>
|
||||
|
||||
// <a href="./index.html">Document Index</a>
|
||||
</div><h1 id="allow-insecure-pop3imap-connection-without-starttls">Allow insecure POP3/IMAP connection without STARTTLS</h1>
|
||||
<p>With default iRedMail setting, all clients are forced to use IMAPS and POPS (via
|
||||
STARTTLS) for better security by default. If your mail clients try to access
|
||||
mailbox via protocol POP3 (port 110) or IMAP (port 143) without TLS support,
|
||||
you will get error message like below:</p>
|
||||
</div><h1 id="allow-insecure-pop3imapsmtp-connections-without-starttls">Allow insecure POP3/IMAP/SMTP connections without STARTTLS</h1>
|
||||
<p>With default iRedMail setting, all clients are forced to use POP3/IMAP/SMTP
|
||||
services over STARTTLS for for better security by default. If your mail clients
|
||||
try to access mailbox via protocol POP3 (port 110) or IMAP (port 143) without
|
||||
TLS support, you will get error message like below:</p>
|
||||
<pre><code>Plaintext authentication disallowed on non-secure (SSL/TLS) connections
|
||||
</code></pre>
|
||||
|
||||
<h2 id="allow-insecure-pop3imap-connections">Allow insecure POP3/IMAP connections</h2>
|
||||
<p>If you want to enable POP3/IMAPS without STARTTLS for some reason (again, not
|
||||
recommended), please update below two parameters in Dovecot config file
|
||||
<code>dovecot.conf</code> and restart Dovecot service:</p>
|
||||
|
@ -33,4 +34,10 @@ ssl=yes
|
|||
<p>Default and recommended setting configured by iRedMail is:</p>
|
||||
<pre><code>disable_plaintext_auth=yes
|
||||
ssl=required
|
||||
</code></pre>
|
||||
|
||||
<h2 id="allow-insecure-smtp-connection">Allow insecure SMTP connection</h2>
|
||||
<p>Please comment out below line in Postfix config file <code>/etc/postfix/main.cf</code>
|
||||
and reload or restart Postfix service:</p>
|
||||
<pre><code>smtpd_tls_auth_only=yes
|
||||
</code></pre><br /><p>If you found something wrong in this document, please do <a href="http://www.iredmail.org/contact.html">contact us</a> to fix it.</p></body></html>
|
|
@ -21,7 +21,7 @@
|
|||
<li><a href="amavisd.no.x-spam.headers.html">Amavisd + SpamAssassin not working, no mail header (X-Spam-*) inserted.</a></li>
|
||||
<li><a href="disable.spam.virus.scanning.for.outgoing.mails.html">Disable spam virus scanning for outgoing mails</a></li>
|
||||
<li><a href="quarantining.html">Quarantining</a></li>
|
||||
<li><a href="allow.insecure.pop3.imap.connection.html">Allow insecure POP3/IMAP connection without STARTTLS</a></li>
|
||||
<li><a href="allow.insecure.pop3.imap.smtp.connections.html">Allow insecure POP3/IMAP/SMTP connections without STARTTLS</a></li>
|
||||
<li><a href="allow.user.to.send.email.without.authentication.html">Allow user to send email without authentication</a></li>
|
||||
<li><a href="configure.thunderbird.html">Configure Thunderbird as mail client (IMAP, SMTP and global ldap address book)</a></li>
|
||||
<li><a href="ignore.trash.folder.in.quota.html">Ignore Trash folder in mailbox quota</a></li>
|
||||
|
|
Loading…
Reference in New Issue