Odd request - Disable all encryption

dbsand

We need to run SMTP/IMAP like it’s 1998. We are using the product in conjunction with amateur (ham) radio, and when we transmit data over ham radio frequencies, we cannot use encryption. Even TLS on the WebUI would be nice to disable if we can. But the priority would be SMTP/IMAP all plaintext. I initially installed Mailcow last night, and I see you can disable a TLS requirement for domains, but still got some TLS-related errors. What more can be done, or can the components even run completely without encryption?

Any hints? I realize this is the exact opposite of the direction and best practice.

mango_cow

Could you use stunnel as a workaround? Like have it sit in the middle so it goes: Ham -> stunnel -> Mailcow

Realistically that’s the only easy solution I can see and stunnel was basically made for scenarios like this.

dbsand

mango_cow
I’ve only used stunnel to ADD encryption to a link for normally-non-encrypted traffic. We want to do the opposite. Unless you’re saying it’s possible for stunnel to proxy the traffic on the server end, so clients can send plaintext and stunnel will make the SSL connections to mailcow?

mango_cow

dbsand Unless you’re saying it’s possible for stunnel to proxy the traffic on the server end, so clients can send plaintext and stunnel will make the SSL connections to mailcow?

I don’t know much about how a ham radio interacts with the OS but if it can basically open a socket and send data through it, then yeah you can have stunnel proxy the traffic. Such that an unencrypted SMTP session (for example) is terminated on port 465 with a TLS session on the Mailcow side. Mailcow sees a modern TLS client and your actual SMTP traffic is going over the radio unencrypted with stunnel in the middle.