Netscape Messaging Server 4.0 supports both the Internet Mail Access Protocol 4 (IMAP4) and the Post Office Protocol 3 (POP3) for client access to mailboxes. IMAP and POP are both Internet-standard mailbox protocols. This chapter describes how to use Netscape Console to configure your server to support either or both of these services. For information on configuring Simple Mail Transfer Protocol (SMTP) services, see Chapter 3, Configuring SMTP Services.
You can control whether any particular instance of Messaging Server makes its IMAP or POP service available for use. This is not the same as turning IMAP or POP on or off (see Starting and Stopping Services); to function, IMAP or POP must be both enabled and turned on.
If you enable the IMAP service, you can specify the port number that the server is to use for IMAP connections. The default is 143.
Port numbers can be any number from 1 to 65535.
Make sure the port you choose isn't already in use or reserved for another service.
Messaging Server supports encrypted communications with IMAP and POP clients by using the Secure Sockets Layer (SSL) protocol. See Configuring SSL Encryption and Authentication for general information on support for SSL in Messaging Server.
Note: Messaging Server 4.0 supports POP over SSL, but not through a separate port from POP. In any case, some client software (such as the current release of Netscape Messenger, the Netscape mail client) does not support POP over SSL.
When a client first connects to the Messaging Server IMAP or POP port, the server sends an identifying text string to the client. This service banner (not normally displayed to the client's user) identifies the server as Netscape Messaging Server, gives the server's version number, and notes the time of connection. The banner is most typically used for client debugging or problem-isolation purposes.
Anonymous login refers to a user logging in under the special user name anonymous, which requires no password. (By convention analogous to that of FTP, users enter their email addresses as passwords, so that their accesses are logged.) One reason for permitting anonymous login might be to provide read-only access to, for example, archived messages of a mailing list.
In typical messaging installations, users access their IMAP or POP mailboxes by entering a password into their mail client. The client sends the password to the server, which uses it to authenticate the user. If the user is authenticated, the server decides, based on access-control rules, whether or not to grant the user access to certain mailboxes stored on that server.
If you choose 0, you do not require encryption. Passwords are sent in the clear or they are encrypted, depending on client policy.
If you choose a nonzero value, the client must establish an SSL session with the server--using a cipher whose key length is at least the value you specify--thus encrypting any IMAP or POP user passwords the client sends.
In addition to password-based authentication, Netscape servers support the authentication of users through examination of their digital certificates. Instead of presenting a password, the client presents the user's certificate when it establishes an SSL session with the server. If the certificate is validated, the user is considered authenticated.
Messaging Server can divide its work among several executing processes, which in some cases can increase efficiency. This capability is especially useful with multiprocessor server machines, in which adjusting the number of server processes can allow more efficient distribution of multiple tasks among the hardware processors.
Note: On some platforms you might also want to increase the number of processes to get around certain per-process limits (such as the maximum number of file descriptors), specific to that platform, that may affect performance.
The more simultaneous client connections your IMAP or POP service can maintain, the better it is for clients. If clients are denied service because no connections are available, they must then wait until another client disconnects.
IMAP connections are generally long-lived compared to POP connections. When a user connects to IMAP to download messages, the connection is usually maintained until the user quits or the connection times out. By contrast, a POP connection is usually closed as soon as the requested mail has been downloaded.
IMAP connections are generally very efficient compared to POP connections. Each reconnection during a POP session requires re-authentication of the user, whereas an IMAP connection requires only a single authentication because the connection remains open. POP connections, therefore, involve much greater performance overhead than IMAP connections. Netscape Messaging Server, in particular, has been designed to require very low overhead by open but idle IMAP connections.
Besides supporting multiple processes, Messaging Server further improves performance by subdividing its work among multiple threads. The server's use of threads greatly increases execution efficiency, because commands in progress are not holding up the execution of other commands.
To reclaim system resources used by connections from unresponsive clients, both the IMAP4 and POP3 protocols provide for the server to unilaterally drop connections that have been idle for a certain amount of time.
From Netscape Console, open the Messaging Server you want to configure.
Click the Configuration tab and open the Services folder in the left pane.
Select IMAP or POP.
Select the System tab in the right pane.
Make general configuration settings:
Set login requirements:
Set performance parameters:
Maximum network sessions. Use this field to specify how many simultaneous IMAP sessions this server is permitted to maintain per process. (Default = 4000.)
Maximum number of threads per process. Use this field to specify the maximum number of threads the IMAP service is permitted to execute at a time. (Default = 1000.)
Save. Click this button to commit any settings you have made in the IMAP System form.
Maximum network sessions. Use this field to specify how many simultaneous POP sessions per process this server is permitted to maintain. (Default = 600.)
Maximum number of threads per process. Use this field to specify the maximum number of threads the POP service is permitted to have executing at a time. (Default = 1000.)
Save. Click this button to commit any settings you have made in the POP System form.