SSL-IMAP-PocketPC {rev. June 9, 2004} ------------------------------------- I am currently suggesting that anyone interested in the SSL-IMAP-PocketPC combination take a look at: http://www.pocketinformant.com/p_webismail.php This is an integrated program from Web Information Solutions that eliminates the need for workarounds such as the one originally presented here (below). MWG 07/09/2004 ------------------------------------- This method allows for access to an S-IMAP (or IMAP-SSL, or SSL-IMAP) mailserver, as often found in the corporate and government world, from the Pocket Outlook/Inbox on a Windows PocketPC device. Microsoft, in its infinite wisdom, has not yet implemented SSL mail as part of its Pocket OSes. By setting up an stunnel between the device and the server, some S-IMAP functionality can be achieved. This was developed and tested on a Verizon/Audiovox THERA running PocketPC 2002, on the Verizon 1XRTT network. It works for me, and was also tested on an HP Jornada running PocketPC 2000 with 802.11b, a Jornada 568 with PocketPC 2002, and a Jornada 720 running Windows CE 3.0. As with all such endeavors, your mileage may vary :) This method uses a port of stunnel for WinCE by Rainer Keuchel, at: http://www.rainer-keuchel.de/wince/dirlist.html Many thanks to Jonathan Kliman, also at UMASS Amherst, for contributions and testing. Thanks to Mort Batchelder and Charles Lakos for contributions and testing. [New] ----- Michael Clarkson has put together an integrated app to automate this setup; he has created a site for it at: http://www.anakinra.co.uk It is currently only packaged for ARM devices, but Michael has indicated that he would be willing to expand device support if possible. In addition to the app, he will have some notes about installation and additional explanation; I recommend you check his site out. It is hoped that this development thread will make the following manual setup obsolete; it is of course hoped that a proper SSL IMAP mail client will make both methods irrelevant. Continuing on with the old method: You will need: -------------- - The stunnel.exe for your processor, available from the above URL - The latest celib.dll, also available from the above URL - A way to run command lines; see http://www.pocketpcdn.com/qa/run.html Installation: ------------- - Create a directory under My Device called \Program Files\STunnel - Copy the stunnel.exe file to your \Program Files\STunnel directory - Copy the celib.dll file to your \Windows directory - Install the run program on your device Getting started: ---------------- - Set up an IMAP mail service under your Pocket Outlook with "localhost" as the server - Make your internet/modem/access/network connection - Using the run utility, run stunnel with the command: stunnel -c -d -r : where: is 143 for IMAP is the IP address of your SSL-IMAP server is 993 for SSL-IMAP - Start your Pocket Inbox - Read your mail! Making a shortcut: ------------------ To save the steps of entering the same info into the run utility, you can create a shortcut to run stunnel with the appropriate parameters. - Connect your device to your PC and locate the desired application, in this case stunnel.exe, using ActiveSync's File Explorer feature - Right-click on the file and choose "Create Shortcut" - Drag and drop the shortcut file to a folder on your desktop PC to copy it to the PC - Open the Notepad application on your PC - Drag-and-drop the PC copy of shortcut file into the Notepad window - You should see the following line in the window: xx#"\Program Files\STunnel\stunnel.exe" - Now add the parameters after the quoted section, separated by a space. The line should look like: xx#"\Program Files\STunnel\stunnel.exe" -c -d -r : - Save the shortcut file and close the Notepad window - Rename the shortcut file to something functional and drag-and-drop it back into your Pocket PC in a convenient location - You can now locate the shortcut and tap on it. It will launch stunnel for your connection. You can copy the shortcut to your Start Menu as well. If you have multiple connections you can repeat the process and make multiple shortcuts. Alternate: ---------- - If you can 'afford' the system and memory overhead, you can run the run command or shortcut on startup, and leave it running, rather than just before you connect with the mail client. This can be done either manually or automatically (by putting your shortcut in the device's \Windows\StartUp folder). In addition: ------------ - This method can also be used to connect to an SMTP server to send mail. This of course would only be necessary if you have an SSL-SMTP server that you need to connect to. If you also need to authenticate against that server, you will need to be running PocketPC 2002, as 2000 does not appear to allow for outgoing authentication. - You will need to create a separate shortcut with the appropriate parameters. Running the second instance of stunnel does not seem to have any appreciable real-world effect on the device, although PPCs can feel bogged down without anything running sometimes... - The difference in setup from the IMAP (receive) function would be the parameters for SMTP might be: is 25 for SMTP is the IP address of your SMTP server is 25 for SSL-SMTP Current limitations: -------------------- - On our systems here, for unknown reasons, deleting a message from the Inbox on the device does not delete it from the server. Curiously, reading a message from the Inbox on the device does mark it as read on the server. Some research shows this to be a somewhat common problem, and seems to be an MS client issue. It apparently works on some IMAP servers and not on others. - There are two ways to work around the above limitation. The first is NOT to use the "Delete" function in your Pocket PC, but instead, use "Move To" and put the message in "Inbox.Trash". This will remove the message from your inbox. This is an adequate workaround but not very elegant. - The second is to use the sequence delete, disconnect, reconnect, and THEN expunging with Tools/Empty Deleted Items. Also not very elegant. Next steps: ----------- - Microsoft fixes the above referenced IMAP delete bug in the client (!) - Microsoft implements SSL in the client (!) - someone else implements SSL in a PPC mail client. This may come soon, see: http://www.pocketinformant.com/AtMail.php Any feedback, comments, ideas, improvements, etc. can be sent to me at the email address below. --- MICHAEL Wm. GILBERT mgilbert@oit.umass.edu Technology Development and Special Projects Office of Information Technologies (OIT) Lederle Graduate Research Center A115 University of Massachusetts at Amherst 740 No. Pleasant Street Amherst, MA 01003-9306 Voice: 413-545-3124 Fax: 413-545-3203