Red Hat Training

A Red Hat training course is available for RHEL 8

Chapter 13. Securing Dovecot

Dovecot contains self-signed SSL certificates in the /etc/dovecot/conf.d/10-ssl.conf file. Since Dovecot does not have CA certificates, you will receive a warning message while connecting to the service. Ensure that you open the default SMTP, IMAP, SSL/TLS IMAP, and POP3 ports, using the following the command:

  • Run the following command to open the ports:

    # firewall-cmd --permanent --add-port=110/tcp --add-port=995/tcp
    # firewall-cmd --permanent --add-port=143/tcp --add-port=993/tcp
    # firewall-cmd --reload

To check the logs, run the following/journalctl command

# journalctl -u dovecot -b