Non-SSL email workarounds for older mfp's

Re: Non-SSL email workarounds for older mfp's

Look into a software called "Stunnel". It replicates the effect off SSL communication.

I haven't installed it myself so I can't really add anything to that. =^..^=

Re: Non-SSL email workarounds for older mfp's

We eat the $10/mo it costs to have Rackspace host an unencrypted SMTP connection using our domain for older machines. It save me a lot of headaches.

Re: Non-SSL email workarounds for older mfp's

tmaged- We also have done that for years until last week they changed my pw for the account to a random due to suspected virus and emailed me saying I need to change the pw. Too many bounces they say. Our phone started ringing immediately. 7 calls in 1.5 hours late Friday. Glad it was late Friday & glad I was able to use the same pw. They analyzed the "flags" and said they were mostly fake gmail addresses getting flagged. Some customers have not been registering the gmail address we start them with. Because of new rules coming down the pike, they suggest the customers use a sending email address registered through their ISP or email host... whether that is Comcast, AT&T, Rackspace, Godaddy, etc... IDK if they just have a problem with Gmail, BUT I'm told by year end there will be no non-ssl servers operating, thanks to FCC guidelines?? So a workaround like Stunnel, or customer setting up a proxy? IDK how to do that, but I'm looking to act quickly before they kill my email account and to be ready for year end.

Re: Non-SSL email workarounds for older mfp's

Did the lease include the term "till death do us part"? Hire a Sales staff.

Re: Non-SSL email workarounds for older mfp's

JR2ALTA- We sell a good amount of copiers that are off lease, refurbished. I guess the combination of the Bizhub's durability and our ability to keep them running 4 or 5 years after the lease return/resale has produced a large base of customers that still see value in these machines. Not everyone can afford a new copier. Not everyone wants to pay the lease company all that interest and often the added service in advance, plus interest.
Not all dealers want to grow their staff. We are very content to stay small and SERVE our customers. If Bizhub 200~362's fill their need, I'm not gonna push a sales pitch on them until it's in THEIR best interest not to fix it.

Re: Non-SSL email workarounds for older mfp's

I haven't heard, nor can I find anything about the elimination of unencrypted SMTP.

Re: Non-SSL email workarounds for older mfp's

Requirements for non SSL/TLS vary from one provider to another. If the customer has an IT provider, it is their responsibility to provide you with the general information on how to set up a MFP to function on their network. Most IT support services already know how to configure Office 365 or Exchange Cloud services to provide non-SSL. In house IT are a different matter but it is stil their responsibility to contact the ISP/email provider. If the customer has no IT, then the best thing is to contact the customers email provider directly. Many have FAQ documents that provide the needed information. Normally there are some restrictions. Normally they either require that the IP address be registered or there is a limit on the number of emails that can be sent. The IP address restriction is the public IP of the router not the local machine IP. If the ISP is the email provider, then the IP is already registered. Gmail allows you to send to another gmail or Google APPs. There are a few ISP's that block port 25 at the router and I have encountered blocking of all normal SMTP ports to any email provider other than the ISP. GoDaddy used to provide SMTP on port 80 but it has been over 6 months since we switched to BrightHouse so I don't know if they still do.

Re: Non-SSL email workarounds for older mfp's

Set up Scan to folder (SMB).

On document to e-mail, right click, choose "send to...", choose e-mail recipient (...if you have local e-mail client!--Mozilla Thunderbird--free option!), compose e-mail and send!

The advantage of this is, you would currently be using whatever the latest e-mail encryption is...AND--you would have a record of the e-mail sent!--so if it needs to be re-sent/forwarded--WHATEVER!, You can do it!

This would be my *personal* preference for reference and accountability!

Another point, if you have a Kyocera MFP that supports the latest HyPas apps, you can get what is called PinPoint Scan!

PinPoint Scan | Capture & Distribution | Document Solutions | KYOCERA Document Solutions

WOW!

Re: Non-SSL email workarounds for older mfp's

If the customer don't mind an extra fee of $8.88 per year they can subscribe to inbox.com

They have a free account but it sometimes puts add in the emails and it will delete your account if you don't log in every 6 months.

They allow authenticated scan to email over port 25 without ssl. After creating the account you have to enable smtp in the options.

I have used it a couple times with a bizhub 200 series and some other copiers. Small price to pay if they don't have any other option. I helped the customer sign up for it in some cases.


Stunnel does work. I have done it once. The software runs on a computer that must be on for scanning the work. The software has a config file that you edit for example


cert = stunnel.pem
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1
client = yes


[pop3s]
accept = 110
connect = pop.gmail.com:995


[imaps]
accept = 143
connect = imap.gmail.com:993


[ssmtp]
accept = 25
connect = smtp.gmail.com:465


Then the copier settings
smtp server: computer with stunnel ip address
port: 25
smtp username: your gmail account
smtp password: your gmail password

Re: Non-SSL email workarounds for older mfp's

If you have a gmail account or have a Google Apps domain, you can use either the Google apps smtp relay, smtp-relay.google.com or Google's Restricted Gmail SMTP aspmx.l.google.com. See the following for more information and restrictions. https://support.google.com/a/answer/176600?hl=en

Re: Non-SSL email workarounds for older mfp's

Another vote here for Stunnel: we just changed over to Office365 for our email service in April. I set up Stunnel on a virtual server, pointed our MP 171 and a few of the servers to it that send email reports and all of them work just like they were connected directly to the 365 servers.

Re: Non-SSL email workarounds for older mfp's

My problem with Stunnel is that most of my customers do not have a PC on their network that they will allow me to install it on nor will they allow me to put an additional computer on their network. Office365 has the same non-SSL relay service available as Gmail. It just takes an IT person willing to do the setup. My first encounter with Office365 was MOC Petroleum. I talked to a tech with their IT service and told him we had a problem sending Scan to Email as the copier did not support StartTLS. He asked for my email address and immediately sent me the URL for the relay server. Note, not all IT people know what they are doing, but some do.

Re: Non-SSL email workarounds for older mfp's

wseyller- I'd like to use Stunnel, or inbox.com. I'm sure older Bizhub customers will go with whatever I recommend. Cost aside, which is the fastest/easiest to config., given I need to do about 75 or more immediately? I'd like to send a how-to out to my customers to help them (or their IT guy) get it done, but all I find is very technical. I need a simple step by step if you know of one. Most of these type customers are small, no IT resource except outside, which could be hit & miss finding a useful guy to get it right. I'll offer my IT guy to them at a good rate, but I need to be able to understand it, since I'm in the field. Thanks.

Re: Non-SSL email workarounds for older mfp's

At least its something you can do remotely.