On Thu, 17 Aug 2000, the webster wrote:
Hello,
Im thinking of getting a webbased mailchecker, hopefully in php.. But almost all of the PHP scripts uses IMAP. And I have heard (from this list even, even says so in inetd.conf :P) that IMAP is *VERY* insecure. What I'm after is, how insecure is it for *me* to use.. ? Can my security be risked by enabling imap, by using it with a php client etc.. ?
As long as the webmail thingie is running on the same box as the IMAP server, you can make it very secure by simply setting up the ipchains to only allow access to the IMAP port from the same box. This assumes that the insecurity lies in the protocol not the imapd program. Regards Ole -- Windows: Where do you want to go today? MacOS: Where do you want to be tomorrow? Linux: Are you coming or what? -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq