{"description": "This option tells Dovecot where to find the mail server's SSL Key.\n<br /><br />\nEdit <tt>/etc/dovecot/conf.d/10-ssl.conf</tt> and add or correct the\nfollowing line (<i>note: the path below is the default path set by the\nDovecot installation. If you are using a different path, ensure you\nreference the appropriate file</i>):\n<pre>ssl_key = &lt;/etc/pki/dovecot/private/dovecot.pem</pre>", "rationale": "SSL certificates are used by the client to authenticate the identity of the\nserver, as well as to encrypt credentials and message traffic. Not using\nSSL to encrypt mail server traffic could allow unauthorized access to\ncredentials and mail messages since they are sent in plain text over the\nnetwork.", "severity": "unknown", "references": {}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": null, "ocil": null, "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": null, "platforms": [], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": [], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Configure Dovecot to Use the SSL Key file", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/services/imap/configure_dovecot/dovecot_enabling_ssl/dovecot_configure_ssl_key/rule.yml", "template": null}