Disable STARTTLS and use TLS instead

core/Dockerfile

@@ -91,6 +91,6 @@ RUN useradd -g vmail -u 5000 vmail -d /vmail -m
 # Volume to store email
 VOLUME ["/vmail"]
 
-EXPOSE 25 143 587 993 4190
+EXPOSE 25 465 993 4190
 
 CMD /boot && exec /usr/bin/supervisord -n -c /etc/supervisord.conf

core/README.md

@@ -51,8 +51,7 @@ Use the the example config files in `config/example` to get you started.
 		docker run -ti -d \
 		  --name dockermail \
 		  -p 25:25 \
-		  -p 587:587 \
-		  -p 143:143 \
+		  -p 465:465 \
 		  -p 993:993 \
 		  -p 4190:4190 \
 		  -v /var/lib/dockermail/settings:/mail_settings \

core/config/dovecot/dovecot.master

@@ -1,8 +1,9 @@
 listen = "*, [::]"
 
 service imap-login {
+  # disable starttls
   inet_listener imap {
-
+	port = 0
   }
 
   inet_listener imaps {

core/config/dovecot/dovecot.ssl

@@ -1,4 +1,4 @@
-ssl = yes
+ssl = required
 disable_plaintext_auth = no
 ssl_cert = </etc/ssl/server/email.crt
 ssl_key = </etc/ssl/server/email.key

core/config/postfix/postfix.master.cf.append

@@ -6,6 +6,7 @@ dovecot   unix  -       n       n       -       -       pipe
 submission      inet    n       -       n       -       -       smtpd
  -o smtpd_etrn_restrictions=reject
  -o smtpd_tls_security_level=may
+ -o smtpd_tls_wrappermode=yes
  -o smtpd_sasl_type=dovecot
  -o smtpd_sasl_path=private/auth
  -o smtpd_sasl_auth_enable=yes