PROBLEM
How can I harden my apiserver?
ENVIRONMENT
- atmail suite - API server
CAUSE
I want to secure my apiserver.
RESOLUTION
Be default, /etc/atmail/api/api.conf
will be set with the following settings:
###
### Settings
###
SKIP_TLS_VERIFY_ALL=true
SMTP_TLS=false
IMAP_TLS=false
###
### SSL Certificates
###
APNS_CERT=
TLS_CERT=
TLS_KEY=
Hardening your apiserver can be achieved by enabling the following:
###
### Settings
###
SKIP_TLS_VERIFY_ALL=false
SMTP_TLS=true
IMAP_TLS=true
###
### SSL Certificates
###
APNS_CERT=/path/to/apns.pem
TLS_CERT=/path/to/tls.pem
TLS_KEY=/path/to/tls.key
Comments