Configuring IMAP and POP servers

Edit online

Use this procedure to configure IMAP and POP servers.

To perform this task, you must have root authority.

  1. Uncomment the imapd or imapds and pop3d or pop3ds configuration entries in the /etc/inetd.conf file.
    The following are examples of the configuration entries:
    #imap2  stream  tcp     nowait  root    /usr/sbin/imapd imapd     
#pop3   stream  tcp     nowait  root    /usr/sbin/pop3d pop3d     
#imaps  stream  tcp     nowait  root    /usr/sbin/imapds imapds     
#pop3s   stream  tcp     nowait  root   /usr/sbin/pop3ds pop3ds
  2. Set the configuration files for the imapds server in the /etc/imapd.cf file and for the pop3ds server in the /etc/pop3d.cf file.
    By default, the less secured security handshaking protocols Secure Sockets Layer version 2 (SSLv2) and SSLv3 are enabled for the imapds server and the pop3ds server. However, you can disable SSLv2 and SSLv3 by updating the configuration files as shown in the following example. You can also enable or disable any cipher by specifying the SSL_CIPHER_LIST string in the configuration file. This option overwrites the default ciphers string that is hardcoded in the applications.
    Configuration file for the imapds server (/etc/imapd.cf):
    	#==================================================================
	#
	# Sample IMAP Server Configuration File
	#
	#==================================================================
	#==================================================================
	# Uncomment the line below to Disable SSL v2 for the imap server.
	#
	#   Disable SSL V2  --->  SSL_OP_NO_SSLv2         YES
	#   Allow SSL V2    --->  SSL_OP_NO_SSLv2         NO
	#
	#
	#SSL_OP_NO_SSLv2         YES  <-------------- uncomment this line to disable sslv2
	#==================================================================
	# Uncomment the line below to Disable SSL v3 for the imap server.
	#
	#   Disable SSL V3  --->  SSL_OP_NO_SSLv3         YES
	#   Allow SSL V3    --->  SSL_OP_NO_SSLv3         NO
	#
	#
	#SSL_OP_NO_SSLv3         YES  <-------------- uncomment this line to disable sslv3
	#==================================================================
	# Uncomment the line below to use the user provided cipher list
	# for the imap server. Parser logic expect Cipher string within " ".
	#
	#
	#SSL_CIPHER_LIST "ALL:!LOW" <--- uncomment this line to customized (enable/disabled) ciphers string
	#==================================================================
    Configuration file for the pop3ds server (/etc/pop3d.cf):
    	#==================================================================
	#
	# Sample POP3 Server Configuration File
	#
	#==================================================================
	#==================================================================	
	# Uncomment the line below to Disable SSL v2 for the pop3d server.
	#
	#   Disable SSL V2  --->  SSL_OP_NO_SSLv2         YES
	#   Allow SSL V2    --->  SSL_OP_NO_SSLv2         NO
	#
	#
	#SSL_OP_NO_SSLv2         YES  <----------- uncomment this line to disable sslv2
	#==================================================================
	# Uncomment the line below to Disable SSL v3 for the pop3d server.
	#
	#   Disable SSL V3  --->  SSL_OP_NO_SSLv3         YES
	#   Allow SSL V3    --->  SSL_OP_NO_SSLv3         NO
	#
	#
	#SSL_OP_NO_SSLv3         YES  <----------- uncomment this line to disable sslv3
	#==================================================================
	# Uncomment the line below to use the user provided cipher list
	# for the pop3d server. Parser logic expect Cipher string within " ".
	#
	#
	#SSL_CIPHER_LIST "ALL:!LOW" <---- uncomment this line to customized (enable/disabled) ciphers string
	#==================================================================
  3. Refresh the inetd daemon by running the following command: 
    refresh -s inetd