1 Topic by freeda.suing

  • freeda.suing
  • Member
  • Offline
  • Registered: 2014-10-13
  • Posts: 56

Topic: Securing my iredmail server

==== Required information ====
- iRedMail version: 0.8.7
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
- Linux/BSD distribution name and version: Ubuntu 12.04.3 LTS 64-bit
- Related log if you're reporting an issue:
====

Hi,

I wanted to secure my iredmail server. When I connect my thunderbird to it, it warns me that my email server is unencrypted. Though I followed the instructions here: http://www.iredmail.org/install_iredmail_on_ubuntu.html

How can I harden my iredmail server for production use. Any suggestions? Thanks!

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by freeda.suing

  • freeda.suing
  • Member
  • Offline
  • Registered: 2014-10-13
  • Posts: 56

Re: Securing my iredmail server

How can I enable SSL/TLS for my redmail server?

3 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,787

Re: Securing my iredmail server

Secure connections of POP3/IMAP/SMTP services are enabled and enforced by default.
And please follow our tutorial to configure Thunderbird:
http://www.iredmail.org/docs/configure.thunderbird.html

4 Reply by freeda.suing

  • freeda.suing
  • Member
  • Offline
  • Registered: 2014-10-13
  • Posts: 56

Re: Securing my iredmail server

Alright Thanks for the prompt reply. Really appreciate it. Will try it soon as I get to work.

5 Reply by freeda.suing

  • freeda.suing
  • Member
  • Offline
  • Registered: 2014-10-13
  • Posts: 56

Re: Securing my iredmail server

ZhangHuangbin wrote:

Secure connections of POP3/IMAP/SMTP services are enabled and enforced by default.
And please follow our tutorial to configure Thunderbird:
http://www.iredmail.org/docs/configure.thunderbird.html

Hi! Thanks I got it working on my Thunderbird. It automatically configured port 143 STARTTLS and outgoing port 587 STARTTLS.

Question is that we have an email server here (the one we are planning on replacing with iRedMail) using ports 993 SSL/TLS and 500 SSL/TLS. Is is recommended that I mimic the current setup? Which is more secure.

6 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,787

Re: Securing my iredmail server

What is port 500 used for?

TLS and SSL are almost the same.

7 Reply by freeda.suing

  • freeda.suing
  • Member
  • Offline
  • Registered: 2014-10-13
  • Posts: 56

Re: Securing my iredmail server

Never mind the port 500 the pervious sysad must have changed the port of the email server.

ZhangHuangbin wrote:

What is port 500 used for?

TLS and SSL are almost the same.


I was reading some documents that thunderbird using STARTTLS is less secure than SSL/TLS. So I want to know if it is possible to implement using SSL/TLS in iRedMail postfix setup.

8 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,787

Re: Securing my iredmail server

freeda.suing wrote:

I was reading some documents that thunderbird using STARTTLS is less secure than SSL/TLS.

Show us the document.

9 Reply by freeda.suing

  • freeda.suing
  • Member
  • Offline
  • Registered: 2014-10-13
  • Posts: 56

Re: Securing my iredmail server

Hi Zhang,

You may now close this case. We can go using STARTTLS since it is still using encryption.

Thanks a lot for you continuous support.

ZhangHuangbin wrote:
freeda.suing wrote:

I was reading some documents that thunderbird using STARTTLS is less secure than SSL/TLS.

Show us the document.