[SOLVED] TLS and pop3

circus78 · 03-21-2015, 11:26 AM

Hi,

is it possible to configure an email client with POP3 protocol, TLS, and port 110?
Or is mandatory to use port 995 if TLS is configured?
Thank you!

T3RM1NVT0R · 03-21-2015, 12:09 PM

Basically when you use port 995 it is SSL and TLS not just SSL. So to answer your question no you cannot configure POP3 with TLS using port 110.

circus78 · 03-21-2015, 01:06 PM

Hi, thank you for your reply.
Instead is it possible to use STARTTLS and port 110, right?
Which is more secure?
I think that starttls is just a little insecure only for the very first part of transaction. After the negotiation, the encryption level is the same of ssl.
Please tell me if I am wrong.
Thank you again

T3RM1NVT0R · 03-21-2015, 01:26 PM

Yes that is possible basically it provides you security on the same port other than using a different port for secure communication. However, why you want to do that, I mean what is the compelling reason behind not using secure port. I mean you can use STARTTLS + Secure port for better security.

STARTTLS handshake process is what I think is done on non-secured channel once that is done it is on TLS. That is my understanding.

My personal preference would be to go with STARTTLS + Secure port rather than doing with STARTTLS - Secure port.

circus78 · 03-22-2015, 08:15 AM

Hi T3rm1nvt0r,

I definitely agree with you.
I just asked to better understand the difference.
Thank you so much!