[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Best way to check email securely?
- Subject: RE: [cobalt-security] Best way to check email securely?
- From: "Curtis Ross" <Curtis_Ross@xxxxxx>
- Date: Wed, 27 Feb 2002 09:00:54 -0700
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> I use stunnel (http://www.stunnel.org) to wrap imap and pop3
mail. If you set your stunnel.pem file with a hostname of "*" it will
work for all sites,
> but warn you the first time you accept the certificate. (this also
defeats some of the general purpose of trusting a site, but it still
encrypts the
> data through SSL)
>
> I add the following to /etc/rc.d/rc.local:
> /usr/local/sbin/stunnel -T -d simap -l /usr/sbin/imapd -p
/etc/stunnel.pem
> /usr/local/sbin/stunnel -T -d spop3 -l /usr/sbin/qpopper-stunnel -p
/etc/stunnel.pem
>
> where 'qpopper-stunnel' is a small script:
>
> ---
> #!/bin/bash
> /usr/sbin/in.qpopper -R -T 300
> ---
>
> This has worked out well for a few clients, including Mozilla
mail and Eudora (I have not tried it with any others).
>
> Hope this helps,
>
> - Eric
>
Hey great info Eric. I've been trying to install stunnel but get a can't
find SSL lib location. Did you run into that problem? It's on a RAQ4.
Regards,
Curtis