About usContact usSite help
Quick links
Search this site

Home * Products Internet Access Hosting & Web Services Hardware & Security Mobile Services Voice Services Data Services Domain Services * Channel Partners * Business Resources Knowledge Centre Case Studies Business Solutions Useful Links * Helpdesk Product Help Technical Library Network Status Customer service * Toolkit WebMail Fax to Email DVS Control Centre Web Password Internet query tools Downloads Dial Companion for Broadband * Demon Newsletter

Home  |  Helpdesk  |  Technical Library  |  FAQs  |  Using TLS with POP3

FAQs

 

Using TLS with POP3

* Introduction
* How will the introduction of this service affect me?
* Do I need to change to this new service?
* If I do not choose to use this service does this mean that my password and emails will be visible to others on the Internet?
* When configuring Outlook Express, am I supposed to tick "This server requires a secure connection (SSL)" under "Incoming Mail POP3"?
* How do I configure my email client for TLS?
* Are there any differences between TLS and SSL?
* Can I use SSL (3.0) to make the connection?
* When I connect on the pop3s port (995) the server disconnects immediately; what's wrong?
* Can I use TLS even though my POP3 client doesn't support it?



Introduction
Demon Customers who collect their email using the POP3 protocol can now use the TLS protocol to connect to the POP3 server securely. Transport Layer Security (TLS) has been developed from the Secure Sockets Layer (SSL) protocol created by the Netscape Communications Corporation. It will allow an encrypted connection to the POP3 server, which means that passwords and email content cannot be intercepted as plain text. Security of connections is of increasing concern when they involve network links outside Demon's control or devices such as WiFi, PDAs and mobile phones. Most email clients can make a secure connection to a POP3 server.
* Back to top

How will the introduction of this service affect me?
You can continue to use your current POP3 connection as normal on port 110. There is no requirement for customers to change to using TLS; however, in order to use the POP3 server enhancement, you will need to make configuration changes to your email client. Please see question "How do I configure....".
* Back to top

Do I need to change to this new service?
No, this service is optional; however, please see the note within the question "If I do not choose to use this service..." As this is a POP3 server enhancement there will be no effect unless you configure your mail client to use TLS (SSL). The current POP3 service (via port 110) will remain available.
* Back to top

If I do not choose to use this service does this mean that my password and emails will be visible to others on the Internet?
Your password is only sent over the Internet if you connect to Demon's POP3 server using another ISP, not if you connect via your Demon account. Network connections should not be considered secure unless strong encryption is used; TLS provides such encryption. Please note: We have always warned our customers that they will be sending this information over the Internet in unencrypted form. If you are concerned at any time that your POP3 password may have been compromised, you should change it as soon as possible. It's a good idea to change your password regularly anyway. You can change your password by visiting http://www.password.uk.demon.net
* Back to top

When configuring Outlook Express, am I supposed to tick "This server requires a secure connection (SSL)" under "Incoming Mail POP3"?
Yes. Outlook Express and Outlook do not have separate options for TLS.
* Back to top

How do I configure my email client for TLS?
For help configuring:



Please note: Turnpike does not support TLS
For all other mail clients please either consult their Help file (look for the keywords "TLS", "SSL", or "encryption") or contact the developers directly.
* Back to top

Are there any differences between TLS and SSL?
Transport Layer Security (TLS) has been developed by the Internet Engineering Task Force (IETF) from the Secure Sockets Layer (SSL) protocol created by the Netscape Communications Corporation. There are differences between TLS v1.0 and SSL 3.0. Although not dramatic, they are significant enough that TLS 1.0 and SSL 3.0 do not directly interoperate. (However, TLS 1.0 does incorporate a mechanism by which a TLS implementation can back down to SSL 3.0).
* Back to top

Can I use SSL (3.0) to make the connection?
Yes, we support Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1).
* Back to top

When I connect on the pop3s port (995) the server disconnects immediately; what's wrong?
Your POP3 client has not been configured correctly to use TLS (SSL).
* Back to top

Can I use TLS even though my POP3 client doesn't support it?
Yes. It is possible to use a third party TLS tunnel, e.g. stunnel, http://www.stunnel.org/.
With stunnel running on your machine, you can connect your POP3 client to stunnel, which in turn connects to Demon's POP3 server and performs the TLS encryption/decryption for you.

Please note: stunnel and any other 3rd Party TLS tunnel are not supported by the helpdesk. Please seek advice from the supplier on the configuration of any 3rd party software.
* Back to top



©Copyright 2008 THUS

*