Hi,
you can try this in imapd.conf:
tls_ca_file: /etc/x509/your_ca_cert.pem
tls_cert_file: /etc/x509/your_pub_cert.pem
tls_key_file: /etc/x509/your_private.key
tls_require_cert: no
tlscache_db: berkeley
On Fri, 2007-03-30 at 12:57 +0530, JOYDEEP wrote:
> Dear list,
>
> is it possible to enable
JOYDEEP wrote:
Dear list,
is it possible to enable the TLs encryption in cyrus ? I don't need the
certificate to authenticate the client. only the transportation will be
encrypted.
How can I do this ?
thanks
See: http://cyrusimap.web.cmu.edu//imapd/install-configure.html, bottom
of the page.
lartc wrote:
> Hi,
>
> you can try this in imapd.conf:
>
> tls_ca_file: /etc/x509/your_ca_cert.pem
> tls_cert_file: /etc/x509/your_pub_cert.pem
> tls_key_file: /etc/x509/your_private.key
> tls_require_cert: no
> tlscache_db: berkeley
>
Fantastic :-) so I have TLS now :-)
Is there any option buy
JOYDEEP wrote:
> is it possible to enable the TLs encryption in cyrus ? I don't need the
> certificate to authenticate the client. only the transportation will be
> encrypted.
Hi!
A look at /cyrus-imapd_source/doc/install-configure.html
shows:
SSL, TLS, and OpenSSL
[...]
Configuring Cyrus wit
Hi,
I now, this is a problem of configuring exim, but I think, the changed
was in Cyrus (please correct me, if I am wrong):
With Cyrus-IMAPD 2.2.X I had this in my exim.conf and it worked all the
days (from http://www.exim.org/eximwiki/CyrusImap):
# Accept valid (and reject invalid) envelope rec
Carsten Mathaes wrote:
> JOYDEEP wrote:
>
>
>> is it possible to enable the TLs encryption in cyrus ? I don't need the
>> certificate to authenticate the client. only the transportation will be
>> encrypted.
>>
>
> Hi!
>
> A look at /cyrus-imapd_source/doc/install-configure.html
>
Hi Ca
Hi!
JOYDEEP wrote:
> Now I want to restrict cyrus so that it only allow TLS encrption and
> nothing else.
> any suggestion ?
Remove (or comment it out) in your imapd.conf
the line with imap, so only th line with imaps is working.
Ciao!
Carsten.
Cyrus Home Page: http://cyrusimap.web.cmu.ed
Dear list,
I have followed Rudy's Suggestion and TLS is working.
I have run *imtest -t "" linux.kolkatainfoservices.in* and
following is the result
S: * OK linux.kolkatainfoservices.in Cyrus IMAP4 v2.2.12 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAI
On Fri, 2007-03-30 at 14:42 +0530, JOYDEEP wrote:
> lartc wrote:
> > Hi,
> >
> > you can try this in imapd.conf:
> >
> > tls_ca_file: /etc/x509/your_ca_cert.pem
> > tls_cert_file: /etc/x509/your_pub_cert.pem
> > tls_key_file: /etc/x509/your_private.key
> > tls_require_cert: no
> > tlscache_db: berk
Olaf Fraczyk wrote:
> On Fri, 2007-03-30 at 14:42 +0530, JOYDEEP wrote:
>
>> lartc wrote:
>>
>>> Hi,
>>>
>>> you can try this in imapd.conf:
>>>
>>> tls_ca_file: /etc/x509/your_ca_cert.pem
>>> tls_cert_file: /etc/x509/your_pub_cert.pem
>>> tls_key_file: /etc/x509/your_private.key
>>> tls_re
Hi,
JOYDEEP wrote:
> I don't have any imaps entry in my imapd.conf.
Sorry! It is the cyrus.conf (not the imapd.conf).
Ciao!
Carsten.
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-li
On Fri, 2007-03-30 at 16:19 +0530, JOYDEEP wrote:
> Olaf Fraczyk wrote:
> > On Fri, 2007-03-30 at 14:42 +0530, JOYDEEP wrote:
> >
> >> lartc wrote:
> >>
> >>> Hi,
> >>>
> >>> you can try this in imapd.conf:
> >>>
> >>> tls_ca_file: /etc/x509/your_ca_cert.pem
> >>> tls_cert_file: /etc/x509/y
JOYDEEP wrote:
> But from the above you can see the problem with self signed certificate.
> So how can I still work with self signed CA ?
I do this all the time ;-)
Ciao!
Carsten.
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archive
Olaf Fraczyk wrote:
[ ... }
> I mean that if you want to force encryption on users you need to use
> imaps.
> If you have imap + TLS it is up to the client to decide if it wants to
> upgrade the "clear text" connection to TLS.
> Disabling imap disallows connection of clients and send
Olaf Fraczyk wrote:
>>
>>
> I mean that if you want to force encryption on users you need to use
> imaps.
> If you have imap + TLS it is up to the client to decide if it wants to
> upgrade the "clear text" connection to TLS.
> Disabling imap disallows connection of clients and sending clear t
JOYDEEP wrote:
Now I want to restrict cyrus so that it only allow TLS encrption and
nothing else.
any suggestion ?
allowplaintext: no
If you use non-plain authentication mechanisms, you need to adjust
sasl_minimum_layer option also.
Could you read even the slightest bit of documentation b
On Fri, 2007-03-30 at 17:29 +0530, JOYDEEP wrote:
> Olaf Fraczyk wrote:
> >>
> >>
> > I mean that if you want to force encryption on users you need to use
> > imaps.
> > If you have imap + TLS it is up to the client to decide if it wants to
> > upgrade the "clear text" connection to TLS.
> >
JOYDEEP wrote:
C: S01 STARTTLS
S: S01 OK Begin TLS negotiation now
verify error:num=19:self signed certificate in certificate chain
verify error:num=24:invalid CA certificate
verify error:num=26:unsupported certificate purpose
TLS connection established: TLSv1 with cipher AES256-SHA (256/256 bit
Ho Joy,
your cyrus.conf probably looks something like:
START {
recover cmd="ctl_cyrusdb -r"
idled cmd="idled"
}
SERVICES {
imap cmd="imapd -p 2" listen="imap" prefork=0
imaps cmd="imapd -s" listen="imaps" prefork=0
pop3 cmd="pop3d" listen="pop3"
Olaf Fraczyk wrote:
On Fri, 2007-03-30 at 16:19 +0530, JOYDEEP wrote:
I am a bit confused here. may be I am wrong but imaps is running at port
993 with SSL where imap with TLs is running at port 143.
I need the imap + TLS. I don't have any imaps entry in my imapd.conf.
So could you all be a li
Hi, you could use fetchmail to do it, just need to reset all the password
from the "Old" server, and configure the file /etc/fetchmailrc
works good!
Regards,
On 3/27/07, BipinDas <[EMAIL PROTECTED]> wrote:
Hi All,
I would like to migrate my existing POP3 inboxs to newly created Cyrus
IMAP ma
21 matches
Mail list logo
