At 17:14 15.09.00, Roman Drahtmueller wrote:
SSL "wraps" the tcp connection. The endpoints actually don't know of the underlying cryptographical connection (as long as they don't query their sockets). They just rely on it. The answer is yes.
2. Is it still possible to exploit a security bug of our IMAP server having the imap port closed to outside?
Yes, if you can connect through the ssl tunnel/port.
Ok, thanks again. Going back to my initial question about security issues of IMAP servers... I can remember to have read some when in the past a comment like "this service is very insecure!" above the imapd line in the inetd.conf of a SuSE-Linux installation. Is this still true? Has the standard imapd you ship with SuSE-Linux been developed with security in mind? Sorry, last question :) JLT