Date: Wed, 28 Apr 2004 17:35:06 -0700 From: Joe Rhett <jrhett@isite.net> To: John Fox <readbsd@mind.net> Cc: freebsd-isp@freebsd.org Subject: Re: Question: SSL via POP3 a performance killer? Message-ID: <20040429003506.GA7380@isite.net> In-Reply-To: <20040428211007.GB357@mind.net> References: <20040428211007.GB357@mind.net>
next in thread | previous in thread | raw e-mail | index | archive | help
If it is just POP3, then it will be overkill. But how are the messages getting there? You'll need at least LMTPd. Are your POP users sending mail through this same server, using ESMTP+TLS? If so, thats a bit more encryption. Our experience is that this system would handle both just fine, but you'd be better off increasing the memory to handle the large mail queues and/or large POP downloads, which are both loaded into memory for processing. Memory is cheap these days, get at least 4gb. On Wed, Apr 28, 2004 at 02:10:07PM -0700, John Fox wrote: > I'm planning my company's next mail server, and would like to get > away from using plain-text authentication for POP3 service. It's > been suggested to me that my best bet would actually be to run POP3 > over SSL, and thus simply encrypt the clear-text authentication, > and that would be good enough for me. > > However, I've also been told that SSL can be very demanding of even > a very powerful computer. > > This new machine will likely run an AMD XP 2600 (or if I'm lucky, > maybe even a 3X99) processor and 1G of RAM, and the OS will (obviously) > be FreeBSD, probably 4.10. It will service approx- imately 13,000 > POP3 accounts, and handle approximately 100,000 POP3 requests per > day. > > Does this seem a workable setup, or does it appear that the > system will indeed be overwhelmed by all the SSL? > > If there's further information that would be of help in answering > this question, please let me know and I will do my best to > provide it. > > Thank you, > > -John > -- > +---------------------------------------------------------------------------+ > | John Fox <jjf @ mind.net> | System Administrator | InfoStructure | > +---------------------------------------------------------------------------+ > | I used to trust the media to tell me the truth, tell us the truth | > | But now I've seen the payoffs everywhere I look | > | Who can you trust when everyone's a crook? | > | -- Queensryche, "Revolution Calling" | > +---------------------------------------------------------------------------+ > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" -- Joe Rhett Chief Geek JRhett@Isite.Net Isite Services, Inc.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040429003506.GA7380>