Skip to content

Configure Dovecot to Use the SSL Key file

An XCCDF Rule

Description

This option tells Dovecot where to find the mail server's SSL Key.

Edit /etc/dovecot/conf.d/10-ssl.conf and add or correct the following line (note: the path below is the default path set by the Dovecot installation. If you are using a different path, ensure you reference the appropriate file):

ssl_key = </etc/pki/dovecot/private/dovecot.pem

Rationale

SSL certificates are used by the client to authenticate the identity of the server, as well as to encrypt credentials and message traffic. Not using SSL to encrypt mail server traffic could allow unauthorized access to credentials and mail messages since they are sent in plain text over the network.

ID
xccdf_org.ssgproject.content_rule_dovecot_configure_ssl_key
Severity
Unknown
References
Updated