Steven Hatfield wrote:
Hi all, I'm looking into using IMAP on my linux server, and noticed that after I installed the imapd rpm, and looked in /etc/inetd.conf, I saw the lines:
# Imapd - Interactive Mail Access Protocol server # Attention: This service is very insecure # imap stream tcp nowait root /usr/sbin/tcpd imapd
Now I'm concerned, because it says that it is insecure. I thought a lot of people use imap? Why do they if it is insecure? What is insecure about it?
Hi Steven, AFAIK, the passwords for IMAP login are transmitted in the clear. That's why it's insecure. You can try "wrapping" it with something like SSLwrap (it's what I use). The URL is: http://www.rickk.com/sslwrap/ Good Luck, Richard -- << "I do not feel obliged to believe that >> << the same God who has endowed us >> << with sense, reason, and intellect has >> << intended us to forgo their use." >> --Galileo Galilei ---***---***---***---***---***---***---***---***---***---***---***--- Richard Witt Phone: (330) 672-0096 Dept. of Physics, Kent State University Email: witt@cnr2.kent.edu ---***---***---***---***---***---***---***---***---***---***---***---