Skip to content

Enable the SSL flag in /etc/dovecot.conf

An XCCDF Rule

Description

To allow clients to make encrypted connections the ssl flag in Dovecot's configuration file needs to be set to yes.

Edit /etc/dovecot/conf.d/10-ssl.conf and add or correct the following line:

ssl = yes

Rationale

SSL encrypt network traffic between the Dovecot server and its clients protecting user credentials, mail as it is downloaded, and clients may use SSL certificates to authenticate the server, preventing another system from impersonating the server.

ID
xccdf_org.ssgproject.content_rule_dovecot_enable_ssl
Severity
Unknown
References
Updated