[svlug] Accessing my mail server via the web
greg at rage.net
Thu Jun 15 16:20:15 PDT 2000
On Thu, 15 Jun 2000, Larry Colen wrote:
> As I'm sure is very common, I have one machine that is both my mail
> server and my web server. I also have telnet and ftp turned off for
> security reasons. Using POP, or IMAP for remote mail access when I
> don't have access to ssh would send my passwords in the clear.
> Likewise, so would telnetting into an intermediate machine and then
> sshing into my home machine.
A couple things I can recommend, neither of which is webmail but both
might be good ideas.
First off, you may want to look at 'sslwrap', which allows you to wrapper
non-ssl services behind an ssl connection. I use sslwrap in conjunction
with IMAP so that I can securely access my mail remotely. On the client
side, netscape communicator supports imap-over-ssl.
Secondly, if you drag around a palm pilot like most of us you may want to
look into setting up OPIE for your telnet service. OPIE is a one time
password implementation; and there are one time password generators
available for Palm Pilot. This is how I get remote access securely when
traveling and the computer I'm using only has a telnet client.
In my case, I've got it configured so that traffic on the local network is
allowed to login normally while non-local telnet connections are forced to
use one time passwords, through the magic of tcp_wrapper 'twist'ing.
Greg Retkowski Mail: greg at rage.net
Raging Network Services URL: http://www.rage.net/
More information about the svlug