Could it be possible that to enter webmail or to configure an account on a device or PC, a 2FA validation could be created? similar to what gmail or microsoft already do? I would gain a lot in security.
No, exim4 does not support 2FA. On webmail, you can setup webmails plugins. For example roundcube:
I always have the same problem with roundcube plugins… in what exact path should I put it? If I put it in /etc/rouncube/pluguins and then add the following in /etc/roundcube/config.inc.php;
$config[‘plugins’] = array(‘twofactor_gauthenticator’);
It doesn’t work, roundcube doesn’t show the option to activate that plugin…
Steps to install
twofactor_gauthenticator rc plugin in Hestia CP:
cd /var/lib/roundcube/plugins/ git clone https://github.com/alexandregz/twofactor_gauthenticator.git cd twofactor_gauthenticator/ cp config.inc.php.dist config.inc.php mkdir /etc/roundcube/plugins/twofactor_gauthenticator/ cd /etc/roundcube/plugins/twofactor_gauthenticator/ ln -s /var/lib/roundcube/plugins/twofactor_gauthenticator/config.inc.php config.inc.php chown -R root:www-data /etc/roundcube/plugins/twofactor_gauthenticator/ chown -R root:www-data /var/lib/roundcube/plugins/twofactor_gauthenticator/
/etc/roundcube/config.inc.php file to add
$config["plugins"] = ["password", "newmail_notifier", "zipdownload", "archive", "managesieve", "contextmenu", "markasjunk", "twofactor_gauthenticator"];
Now edit file
/etc/roundcube/plugins/twofactor_gauthenticator/config.inc.php to configure the preferences for the plugin (don’t forget to edit
users_allowed_2FA in this config file to enable the plugin for your user or domain).