[prev in list] [next in list] [prev in thread] [next in thread]
List: alpine-info
Subject: Re: [Alpine-info] setting up IMAP
From: Mike Miller <mbmiller+l () gmail ! com>
Date: 2017-11-25 16:29:43
Message-ID: alpine.DEB.2.20.1711251016300.23634 () taxahome2
[Download RAW message or body]
On Tue, 21 Nov 2017, Carlos E. R. wrote:
> El 2017-11-14 a las 17:54 -0600, Mike Miller escribió:
>
>> Let me know if you have any tips. I set up imap using these instructions:
>>
>> https://askubuntu.com/questions/346528/easiest-way-to-set-up-an-imap-mail-server
>
> So you installed dovecot.
> I also use dovecot, but on another distro.
>
>> I left off the pop3. I made appropriate edits to .pinerc, I think, because
>> it seems to be working. Next I forwarded local port 143 to port 143 on the
>> server machine.
>
> Why the forwarding?
For encryption security. I read in an old Alpine-Info that someone was
using that and Mark Crispin liked the idea. He thought it might work
better than Alpine built-in ssh:
http://mailman13.u.washington.edu/pipermail/alpine-info/2009-February/001745.html
>> One problem -- I frequently get this message when changing folders:
>>
>> [The authenticity of host 'localhost (127.0.0.1)' can't be established.
>> ECDSA key fingerprint is SHA256:Xg9gYL4r/k8OX2RjGb
>> [> SECURITY PROBLEM: insecure server advertised AUTH=PLAIN<]
>> Are you sure you want to continue connecting (yes/no)?
>
> That's because the certificate is not signed by an authority, it is normal.
>
> I use:
>
> incoming-folders=
> ...
> "Via coitt" {localhost/novalidate-cert/user=cer}in_coitt,
> "Via ieee" {localhost/novalidate-cert/user=cer}in_ieee,
> ...
>
> The "novalidate-cert" is precissely to cover that problem.
Yep, I did get that figured out. Also, thanks to help from Joshua Miller
on this list (see below), I did learn to use IMAPS, port 993, instead of
ordinary IMAP.
>> I found something out there about PHP, but I guess I can't use that.
>> Any ideas? It isn't a big deal, though. It only lingers for a few
>> seconds.
>
> PHP? I got lost.
I think I was lost, literally: When I googled the error message, almost
all of the hits were to PHP discussion threads. It took me awhile to
figure out what had happened.
Thanks for the reply, Carlos!
I include below the off-list messages with Joshua Miller below. He
probably did not intend to write to me alone, and I didn't realize I
wasn't replying to the list until the end.
Date: Fri, 17 Nov 2017 17:57:52
From: Mike Miller
To: Joshua Miller
Subject: Re: [Alpine-info] setting up IMAP
On Wed, 15 Nov 2017, Mike Miller wrote:
> On Tue, 14 Nov 2017, Joshua Miller wrote:
>
>> IMAP can also be accessed via IMAPS, which is like HTTPS - it's IMAP
>> over SSL/TLS. If you installed stuff via the ubuntu repositories (ex.
>> using apt or something like that), it probably created a self-signed
>> cert for you already and probably put a config in place that has info
>> on how to enable IMAPS. How that's done will depend on the mail server
>> you use, of course.
>>
>> If you use dovecot, the necessary config files will probably be
>> /etc/dovecot/conf.d/10-master.conf and /etc/dovecot/conf.d/10-ssl.conf.
>> It might already be working (try connecting to port 993 on the mail
>> server). You might need to open the iptables firewall for that port
>> too.
>>
>> That should be just as secure as tunneling it over ssh, but it'll be
>> using a native protocol, and you'll be able to use it from other hosts
>> without needing to setup the ssh tunnel (ex. from your smartphone via
>> your wifi network if you want).
>
>
> That sounds appealing, but it looks like it could take hours to figure
> it all out. It is not running out of the box. I think I'm going to try
> to do it anyway.
Yes, it was quite an adventure. I still have more to learn about TLS/SSL,
but I did get it to work.
I wasn't able to get around the /novalidate-cert issue, though. How can
that be done? Is there a way to fix that without paying?
Thanks for the help, Joshua!
Mike
Date: Fri, 17 Nov 2017 18:03:47
From: Mike Miller
To: Joshua Miller
Subject: Re: [Alpine-info] setting up IMAP
On Fri, 17 Nov 2017, Mike Miller wrote:
> Yes, it was quite an adventure. I still have more to learn about
> TLS/SSL, but I did get it to work.
>
> I wasn't able to get around the /novalidate-cert issue, though. How can
> that be done? Is there a way to fix that without paying?
By the way, I used the instructions in the second answer here (by
nietonfir) to create a cert and key:
https://askubuntu.com/questions/49196/how-do-i-create-a-self-signed-ssl-certificate
Mike
Date: Fri, 17 Nov 2017 18:05:15
From: Mike Miller
To: Joshua Miller
Subject: Re: [Alpine-info] setting up IMAP
I just realized that you didn't reply to the list so all of this was just
between the two of us. Is that what you wanted?
Mike
_______________________________________________
Alpine-info mailing list
Alpine-info@u.washington.edu
http://mailman13.u.washington.edu/mailman/listinfo/alpine-info
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic