To secure your Post Office Protocol (POP) server from unknown applications,
you might want to prevent access to POP ports.
To prevent POP from starting and to prevent someone from associating
a user application, such as a socket application, with the port that the iSeries™ server
normally uses for POP, complete the following steps:
- In iSeries Navigator,
expand .
- Right-click TCP/IP Configuration and select Properties.
- In the TCP/IP Configuration Properties window, click the Port
Restrictions tab.
- On the Port Restrictions page, click Add.
- On the Add Port Restriction page, specify the following settings:
- User name: Specify a user profile name that is
protected on your iSeries server. (A protected user profile is a user
profile that does not own programs that adopt authority and does not have
a password that is known by other users.) By restricting the port to a specific
user, you automatically exclude all other users.
- Starting port: 109
- Ending port: 110
- Protocol: TCP
- Click OK to add the restriction.
- On the Port Restrictions page, click Add and
repeat the procedure for UDP.
- Click OK to save your port restrictions
and close the TCP/IP Configuration Properties window.
The port restriction takes effect the next time that you start TCP/IP.
If TCP/IP is active when you set the port restrictions, you should end TCP/IP
and start it again.