Re: https server and web mail interface

Wed, 16 Aug 2000 06:39:05 -0700 

On Wed, 16 Aug 2000, Dan Horth wrote:

> Hi - I'd like to set up a web mail interface for our mail server for 
> remote users to check and send mail. I'm looking into this as a way 
> of increasing the security of our server - by stopping off-site users 
> from using POP to check their mail. I'm intending on blocking POP 
> connections from off-site once webmail is implemented...
> 
> a) I can set up https on our apache server with available info at 
> http://www.apacheweek.com/ but I don't know where to start in setting 
> up a web mail interface - can you suggest one that works well with a 
> redhat 6.2 server?
> 
> b) so long as I force all web mail transactions to be through the 
> secure server then this will provide a better level of security than 
> POP with cleartext passwords - specially when our users are using 
> systems such as hotmail or yahoo mail to fetch their pop mail - or am 
> I being deluded here?
> 
> c) is there a better way of approaching this security issue?
> 
> any pointers, how-tos, urls or horror stories would be greatly appreciated!
> 
> thanks in advance, dan.

Dan,

What is your security concern? Expliots against the POP daemon? Cleartext
passwords over the Net? Do your users have login privledges on the box?

Depending on the answers to those question, the solution shall reveal
itself. :)

First thing I would do is move to a setup that allows POP accounts without
having to have a system account for each user. There are plenty of ways to
do this, check

http://linuxdoc.org/HOWTO/Qmail-VMailMgr-Courier-imap-HOWTO.html

This setup gives you an IMAP server and switches the MTA from sendmail to
qmail (which I have been very happy with). Once this is setup, you can
install any web client that supports IMAP. Imp is one that I've heard is
very good (though it can be tricky to setup). Another is SquirrelMail
(http://www.squirrelmail.org/), I had this one setup with 10 minutes.
 
Good Luck,

Bill Carlson
------------
Systems Programmer    [EMAIL PROTECTED]    |  Opinions are mine,
Virtual Hospital      http://www.vh.org/        |  not my employer's.
University of Iowa Hospitals and Clinics        |



_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Reply via email to