You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Oct 16, 2020. It is now read-only.
Paul Cunningham edited this page May 16, 2017
·
2 revisions
IMAP Secure Login
Checks that insecure IMAP logins are not permitted.
Best Practice
IMAP logins should be configured to SecureLogin to prevent user credentials from being passed over the network in the clear.
What To Do
If SecureLogin is not enabled, you should enable it.
If SecureLogin is not enabled and you are not able to enable it for some reason, it is recommended to remove the insecure port binding for IMAP4, therefore requiring all connections to be made on the IMAP SSL port.
NOTE: This change may have an impact on any clients that are using insecure IMAP logins, requiring them to be reconfigured for secure login only.