From owner-freebsd-isp@FreeBSD.ORG Thu Apr 29 06:02:03 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B29FA16A4CE for ; Thu, 29 Apr 2004 06:02:03 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id D95E043D45 for ; Thu, 29 Apr 2004 06:02:02 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.32 #0 (FreeBSD 4.9)) id 1BJBAu-000NNS-05 by authid for ; Thu, 29 Apr 2004 16:02:00 +0300 Date: Thu, 29 Apr 2004 16:01:59 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Message-ID: <20040429130159.GA82083@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org References: <20040428211007.GB357@mind.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20040428211007.GB357@mind.net> X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Mailer: Mutt 1.5.5.1i (2003-11-05) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. User-Agent: Mutt/1.5.5.1i Subject: Re: Question: SSL via POP3 a performance killer? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Apr 2004 13:02:03 -0000 * John Fox [20040429 00:09]: wrote: > I'm planning my company's next mail server, and would like to get > away from using plain-text authentication for POP3 service. It's > been suggested to me that my best bet would actually be to run POP3 > over SSL, and thus simply encrypt the clear-text authentication, > and that would be good enough for me. > > However, I've also been told that SSL can be very demanding of even > a very powerful computer. > > This new machine will likely run an AMD XP 2600 (or if I'm lucky, > maybe even a 3X99) processor and 1G of RAM, and the OS will (obviously) > be FreeBSD, probably 4.10. It will service approx- imately 13,000 > POP3 accounts, and handle approximately 100,000 POP3 requests per > day. > > Does this seem a workable setup, or does it appear that the > system will indeed be overwhelmed by all the SSL? This is an overkill. And I recommend tpop3d as the POP3 daemon. 1.5.3 Supports SSL. I run it here for over 14k users on a machine with specs lower than yours, which is also my main SMTP server, does web hosting, IMAP, etc. -Wash http://www.netmeister.org/news/learn2quote.html -- +======================================================================+ |\ _,,,---,,_ | Odhiambo Washington Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +======================================================================+ A pedestal is as much a prison as any small, confined space. -- Gloria Steinem