i'm looking for how to prevent users from submitting clear text passwords, and i'm stumbling..
closing port 110 might force pop clients to use port 995, but i've read that tls is preferred over ssl, and tls uses port 110? i've also got openwebmail set up, and i tried tweaking httpd.conf so that it would only find it via ssl. specifically i tried putting separate VirtualDocumentRoot and VirtualScriptAlias definitions inside the <VirtualHost _default_:443> section, and i was surprised that although the alternate VirtualDocumentRoot works fine, the alternate VirtualScriptAlias appeared ineffective. so how does anyone recommend preventing such as openwebmail from being used via port 80? (i'm running both rh 7.2 and 7.3) -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list