Email Tutorials - Herong's Tutorial Examples
∟SSL/TLS Secure Connections with Dovecot Server
This chapter provides introductions and tutorial examples about SSL/TLS secure connections with Dovecot server. Topics include testing SSL/TLS connections with 'openssl s_client' commands; replacing the default self-signed server certificate; requesting and installing a CA-signed server certificate.
These sections are omitted from this Web preview version. To view the full content,
see information on how to obtain the full version this book.
SSL/TLS Options on Dovecot Server Ports
STARTTLS (Opportunistic TLS) on IMAP Port 143
IMAPS Service on Port 993 in Dovecot
STARTTLS (Opportunistic TLS) on POP3 Port 110
POP3S Service on Port 995 in Dovecot
Replace Self-Signed Root Certificate on Dovecot
Install CA Signed Server Certificate on Dovecot
Takeaways:
- Dovecot server listens on 4 TCP ports, 143, 993, 110 and 995, for incoming POP3 and IMAP connection requests
- Dovecot server accepts IMAP requests at port 143 with STARTTLS command to start SSL/TLS connections manually.
These are often referred as Opportunistic TLS connections.
- Dovecot server accepts IMAP requests at port 993 with SSL/TLS connections started automatically.
These are often referred as IMAPS (IMAP over SSL/TLS) connections.
- Dovecot server accepts POP3 requests at port 110 with STARTTLS command to start SSL/TLS connections manually.
These are often referred as Opportunistic TLS connections.
- Dovecot server accepts POP3 requests at port 995 with SSL/TLS connections started automatically.
These are often referred as POP3S (IMAP over SSL/TLS) connections.
- "openssl s_client" command is a very powerful tool for testing SSL/TLS connections.
- You should replace the default self-signed server certificate with a new one that matches your Dovecot server identity.
- You should request and install a CA self-signed server certificate to avoid certificate exceptions in email clients.
Table of Contents
About This Book
Introduction to Email
Postfix - Mail Transport Agent (MTA)
SSL/TLS Secure Connections with Postfix Server
Dovecot - IMAP and POP3 Server
►SSL/TLS Secure Connections with Dovecot Server
Email Client Tools - Mail User Agents (MUA)
Mozilla Thunderbird - Mail User Agents (MUA)
References
Full Version in PDF/EPUB