LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   TLS and pop3 (https://www.linuxquestions.org/questions/linux-security-4/tls-and-pop3-4175537449/)

circus78 03-21-2015 11:26 AM
TLS and pop3
 
Hi,

is it possible to configure an email client with POP3 protocol, TLS, and port 110?
Or is mandatory to use port 995 if TLS is configured?
Thank you!

T3RM1NVT0R 03-21-2015 12:09 PM
Basically when you use port 995 it is SSL and TLS not just SSL. So to answer your question no you cannot configure POP3 with TLS using port 110.

circus78 03-21-2015 01:06 PM
Hi, thank you for your reply.
Instead is it possible to use STARTTLS and port 110, right?
Which is more secure?
I think that starttls is just a little insecure only for the very first part of transaction. After the negotiation, the encryption level is the same of ssl.
Please tell me if I am wrong.
Thank you again

T3RM1NVT0R 03-21-2015 01:26 PM
Yes that is possible basically it provides you security on the same port other than using a different port for secure communication. However, why you want to do that, I mean what is the compelling reason behind not using secure port. I mean you can use STARTTLS + Secure port for better security.

STARTTLS handshake process is what I think is done on non-secured channel once that is done it is on TLS. That is my understanding.

My personal preference would be to go with STARTTLS + Secure port rather than doing with STARTTLS - Secure port.

circus78 03-22-2015 08:15 AM
Hi T3rm1nvt0r,

I definitely agree with you.
I just asked to better understand the difference.
Thank you so much!


All times are GMT -5. The time now is 07:12 AM.