Running latest Virtualmin on Centos 8.2. Curious to know how I can improve my mail security. I see TLS is enabled, but I’m not liking that this method=PLAIN is actively printing. What are the recommended steps to enable a higher level of security for my email here?
Oct 18 09:20:41 dev dovecot: imap-login: Login: firstname.lastname@example.org, method=PLAIN, rip=[iphere], lip=[iphere], mpid=1205868, TLS, session=<eoThs/KxNsvUZi1z>
Any diagnostic insight on this would be great for me to understand if this is in fact unsecure or if TLS supersedes that PLAIN value and it is handling the job of security in its’ entirety.
I’m trying to understand better which cipher this TLS connection is using, 128 or 256bit encryption, or if I need to be looking at working with another method to supply AES 128/256 bit encryption here.
I figure if I’m going to take on the responsibility of running a mail server with so many sensitive credentials being sent by various companies, banking institutions, etc, I should probably lock this down the best I can. Thanks for the insight.