We would like to inform you of increased security measures that may require your action. We are removing insecure (Standard) access for IMAP, POP, and SMTP. This is necessary for our migration to Open-Xchange, and it will be more secure for your users.
Insecure access sends the username and password in plain text over the network. Bad actors can exploit this vulnerability to steal the username and password for the mailbox. Secure access encrypts the data, protecting against main-in-the-middle attacks, attackers reading a message in transit, and messages being forwarded to attackers.
To prepare for this change, you’ll need to reconfigure any clients connecting insecurely. Reconfiguring clients before we remove insecure access will ensure continued email access without disruption.
Refer to the email help tool if you need instructions for reconfiguring clients.
The secure settings are:
- Secure IMAP: secure.emailsrvr.com (Port 993)
- Secure POP: secure.emailsrvr.com (Port 995)
- Secure SMTP: secure.emailsrvr.com (Ports 465 or 587)
- Be sure to select options for secure TLS.
The removal of insecure (Standard) access has started and will be complete by December 2022.