Home Forums OS X Server and Client Discussion Questions and Answers Binding AMS to loopback only (single IP) – Help

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • December 26, 2002 at 5:11 pm #354925
    scorpion
    Participant

    So I have Exim routing mail (nicely, thanks for the help), virtual hosts working, and AMS picking up the mail on via SMTP/627. I now want to use stunnel to encrypt the traffic. To do so, I would like AMS to stop listening on the IMAPS port (since it doesn’t work right anyway), or at least restrict it to the loopback (127.0.0.1) port.

    Then I could stunnel from the internal and external IPs into the unencrypted ports. Unfortunately, AMS grabs the ports, so stunnel fails to bind. Please help.

    Alex

    December 26, 2002 at 8:47 pm #354928
    Anonymous
    Participant

    How do I start/stop AMS from the command line? I suppose I can do this all in stunnel then, and use the firewall to stop AMS from getting the connections on its own from the standard ports.

    Alex

    January 16, 2003 at 6:37 pm #355017
    scorpion
    Participant

    So I paid Thawte the ransom, any idea how to add the cert to AMS? I’d rather use AMS for IMAPS instead of stunnel, as I don’t have a non-hacky way to get stunnel to handle it (I need to stop mail, start stunnel, start mail). If you know of a command line tool for stopping and starting mail, that would work as well.

    My perl is lousy, so any help would be appreciated. Looks like we’re paying $200/serve to Thawte… its highway robbery, but one of our lesser Apple taxes. 🙂

    Alex

    January 16, 2003 at 9:10 pm #355020
    scorpion
    Participant

    I keep hearing about this kbase article, but I see no evidence to support its existance. What do I search for? How do I find it. I’m pulling my hair out. I bought an Xserve to save time configuring servers… argh… 🙂 Thanks for all the help here, or I’d have tossed it.

    Thanks,
    Alex

    January 16, 2003 at 9:30 pm #355022
    scorpion
    Participant

    Weird, searching for email ssl didn’t work…

    So this is really cool… I already have a private key, made the CSR, and just got my Thawte CRT. So this program is useless to me. Certtool seams rediculously crippled… ARGH!

    I’ll either just use stunnel, or see if I can find some other documentation for this program to force it to accept an existing key…

    I really wish that AMS would stop listening on IMAPS… Nobody has a script to stop/start AMS from the commandline, huh? My Perl is lousy, and the guy who writes them keeps ignoring them.

    Alex

  • Author
    Posts
Viewing 5 posts - 1 through 5 (of 5 total)
  • You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.