non-encrypted for local queries

Raphael Jaffey rjaffey at
Wed Mar 17 11:11:10 EDT 2010

Use the following as the only "imapd" command configured in 
/etc/cyrus.conf to accept connections from localhost only:

imap          cmd="imapd" listen="[]:imap" prefork={number}

You can restrict access to hosts from the LAN without using the firewall 
using at least a couple of methods:

1) Assuming cyrus was compiled with libwrap support, you can restrict 
access to the imap service in /etc/hosts.allow (or /etc/hosts.deny).

2) If the LAN you mentioned below is private (no access from other 
subnets and networks), you can use the following in /etc/cyrus.conf in 
addition to the entry I mentioned above:

imap          cmd="imapd" listen="[{LAN-interface-address}]:imap" 

Nybbles2Byte wrote:
> Hello Info-cyrus,
> Is there a way to tell cyrus to accept non-encrypted port 143 queries 
> from localhost (and perhaps the LAN) but not  remotely? I guess you 
> could allow unencrypted requests in cyrus but block 143 in your firewall 
> but I am wondering if there is purely cyrus settings solution.
> /-- 
> Nybbles2Byte                          mailto:nybbles2byte at
> /
> /
> ------------------------------------------------------------------------
> /
> ----
> Cyrus Home Page:
> Cyrus Wiki/FAQ:
> List Archives/Info:

Raphael Jaffey                             E-mail: rjaffey at
Director of Network Services
The Art Institute of Chicago                Voice: (312) 629-6543
111 S. Michigan Ave, Chicago, IL  60603       FAX: (312) 641-3406

More information about the Info-cyrus mailing list