Originally Posted by falko
What did you change in the scripts? The ports are:
993 for IMAPS
995 for POP3S
Yes, thats what I did. The scripts used the constants $PORT, which were set to the 110 or 143, instead of the constants $SSLPORT, which were set to 993 and 995. Without that change courier SSL implementations did listen to the wrong ports. Now I am having the feeling they do listen to the right ports, but not using SSL encriptions, since I just had a nice conversation with the POP3 SSL daemon through normal telnet:
mars:/etc/courier # telnet localhost 995
Connected to localhost.
Escape character is '^]'.
+OK Hello there.
+OK Password required.
+OK logged in.
+OK POP3 clients that break here, they violate STD53.
Connection closed by foreign host.
I dont think this should have worked this way if encryption was active, right?