non-encrypted for local queries
Raphael Jaffey
rjaffey at artic.edu
Wed Mar 17 11:11:10 EDT 2010
Use the following as the only "imapd" command configured in
/etc/cyrus.conf to accept connections from localhost only:
imap cmd="imapd" listen="[127.0.0.1]:imap" prefork={number}
You can restrict access to hosts from the LAN without using the firewall
using at least a couple of methods:
1) Assuming cyrus was compiled with libwrap support, you can restrict
access to the imap service in /etc/hosts.allow (or /etc/hosts.deny).
2) If the LAN you mentioned below is private (no access from other
subnets and networks), you can use the following in /etc/cyrus.conf in
addition to the entry I mentioned above:
imap cmd="imapd" listen="[{LAN-interface-address}]:imap"
prefork={number}
Nybbles2Byte wrote:
> Hello Info-cyrus,
>
> Is there a way to tell cyrus to accept non-encrypted port 143 queries
> from localhost (and perhaps the LAN) but not remotely? I guess you
> could allow unencrypted requests in cyrus but block 143 in your firewall
> but I am wondering if there is purely cyrus settings solution.
>
> /--
> Nybbles2Byte mailto:nybbles2byte at gmail.com/
>
> /
> /
> ------------------------------------------------------------------------
> /
> ----
> Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html/
--
___________________________________________________________________________
Raphael Jaffey E-mail: rjaffey at artic.edu
Director of Network Services
The Art Institute of Chicago Voice: (312) 629-6543
111 S. Michigan Ave, Chicago, IL 60603 FAX: (312) 641-3406
More information about the Info-cyrus
mailing list