Document unauthenticated listener exposure #13

Merged

lyrathorpe merged 1 commits from docs/security-note into main

2026-06-17 17:33:52 +01:00

Author	SHA1	Message	Date
lyrathorpe	c580f494ea	docs: add Security section documenting unauthenticated listeners Build and publish container / build (pull_request) Successful in 8m58s Details Document that the front-end POP3/SMTP listeners are unencrypted and unauthenticated, warn that they must be bound to a trusted internal network only, and note POP3_BIND_ADDR / SMTP_BIND_ADDR for restricting the bind address. Fixes #9 Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-17 17:22:12 +01:00

Author

SHA1

Message

Date

lyrathorpe

c580f494ea

docs: add Security section documenting unauthenticated listeners

Build and publish container / build (pull_request) Successful in 8m58s

Details

Document that the front-end POP3/SMTP listeners are unencrypted and
unauthenticated, warn that they must be bound to a trusted internal
network only, and note POP3_BIND_ADDR / SMTP_BIND_ADDR for restricting
the bind address.

Fixes #9

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-17 17:22:12 +01:00

Document unauthenticated listener exposure #13

1 Commits