Port 110: the port of POP3 and email services

Port 110 is traditionally used for the Post Office Protocol version 3 (POP3), which is a standard protocol for email retrieval. POP3 allows users to access their email messages from a remote server and download them to their local devices. Port 110 is specifically designated for POP3 communication, allowing clients to connect to the POP3 server and retrieve their email. However, it’s worth noting that nowadays, secure alternatives like POP3 over SSL/TLS (POP3S) on port 995 are more commonly used to ensure encrypted and secure email retrieval.

How the POP3 communication happens on port 110?

POP3 communication occurs through port 110. The process involves several steps to retrieve emails from a server. First, a client establishes a TCP connection with the POP3 server on port 110. Once connected, the client provides login credentials for authentication. Upon successful authentication, a session is initialized, allowing the client to interact with the mailbox.

During the session, the client can issue commands to retrieve emails. These commands include requesting a list of available emails, marking emails for deletion, and downloading specific emails. The server maintains transaction updates, such as marking emails as read or deleted, based on the client’s commands. When the client requests to download an email, the server sends the relevant parts of the email over the established connection.

Finally, when the client has finished retrieving emails, it sends a command to close the session and terminate the connection. It’s important to note that communication over port 110 is typically plain text and lacks encryption. To enhance security, it is recommended to use secure alternatives such as POP3S (POP3 over SSL/TLS) on port 995, which encrypts the communication using SSL/TLS protocols, ensuring the confidentiality and integrity of the retrieved emails.

Difference between POP and IMAP ports

Port 110 is associated with the Post Office Protocol version 3 (POP3), while the IMAP port typically refers to port 143, which is used by the Internet Message Access Protocol (IMAP). Although both protocols are used for email retrieval, there are several key differences between them in terms of functionality and features.

Firstly, POP3 is primarily focused on downloading emails from the server to the client’s device. It follows a “store-and-forward” model, where emails are typically deleted from the server once downloaded. On the other hand, IMAP provides more advanced email management capabilities. It allows users to manage emails directly on the server, enabling features like folder management, searching, and organizing emails into different folders. IMAP offers a more synchronized approach, where changes made on one device (e.g., marking an email as read) are reflected across all devices connected to the same IMAP account.

Secondly, POP3 is a simple and lightweight protocol that downloads entire emails to the client. Once downloaded, the client manages the emails locally. In contrast, IMAP keeps the emails on the server and provides a more interactive experience. With IMAP, clients can access email headers, download specific parts of emails, and synchronize changes between the server and client.

Another difference lies in their handling of email attachments. POP3 downloads the entire email, including attachments, to the client’s device. In contrast, IMAP allows clients to selectively download attachments or view them on the server without actually downloading them. This feature is particularly useful for devices with limited storage or when accessing emails from multiple devices.

Lastly, the security aspect also differs. Both POP3 and IMAP can operate over secure connections using SSL/TLS encryption. The secure versions are known as POP3S (POP3 over SSL/TLS) and IMAPS (IMAP over SSL/TLS), which use ports 995 and 993, respectively. However, it’s worth noting that POP3, by default, usually downloads emails to the client, making them vulnerable if the client device is compromised. IMAP, with its server-centric approach, allows for better control and security since the emails remain on the server and can be accessed securely from multiple devices.

In summary, while both POP3 and IMAP are email retrieval protocols, they differ in functionality and features. POP3 is focused on downloading emails to the client’s device, while IMAP offers more advanced email management capabilities with server-side synchronization. IMAP allows for selective email access, attachment handling, and better security through server-centric control. Understanding the differences between these protocols can help users choose the one that best suits their email management needs.

POP3 vs POP3S ports

The main difference between POP3 and POP3S lies in the security aspect of the communication. POP3 (Post Office Protocol version 3) is a standard email retrieval protocol that operates over port 110. It transfers email messages from the server to the client in plain text, which means the communication is not encrypted. This lack of encryption raises concerns about the confidentiality of the transmitted data, as it can potentially be intercepted and read by unauthorized individuals.

On the other hand, POP3S (POP3 over SSL/TLS) addresses the security vulnerabilities of POP3 by introducing encryption. POP3S operates over port 995 and utilizes SSL/TLS (Secure Sockets Layer/Transport Layer Security) protocols to encrypt the communication between the client and the server. This encryption ensures that the data exchanged during the retrieval process, including login credentials and email content, is protected from eavesdropping and tampering. POP3S provides a secure and encrypted channel for retrieving emails, enhancing the privacy and security of the communication.

To establish a POP3S connection, the client must initiate a secure SSL/TLS handshake with the server, which involves verifying the server’s digital certificate and establishing an encrypted session. Once the secure connection is established, the client can proceed with the usual POP3 commands and retrieve emails over the encrypted channel. The use of POP3S is recommended when accessing email services over untrusted networks or when the privacy and security of the email retrieval process are of utmost importance.

Port 110 and SSL

By default, port 110 is not associated with SSL/TLS encryption in the context of the Post Office Protocol version 3 (POP3). The standard POP3 protocol operates over port 110 and uses plain text communication, which means the data transmitted between the client and the server is not encrypted.

However, it’s worth noting that there is an extension to the POP3 protocol called STLS (STARTTLS) that allows for opportunistic encryption. The STLS extension enables a plain text POP3 session to be upgraded to an encrypted session using SSL/TLS encryption. When the client issues the STLS command, the server responds by initiating a secure SSL/TLS handshake, establishing an encrypted channel for the subsequent POP3 communication.

The use of STLS on port 110 effectively enables encryption for POP3 communication, making it similar in functionality to POP3S (POP3 over SSL/TLS) on port 995. However, it’s important to understand that STLS support is not universally implemented or supported by all POP3 servers and clients. Therefore, while it is technically possible to use SSL/TLS encryption with port 110 via the STLS extension, it may not be widely available or supported in practice.

Unlike Port 22 for SSH, Port 110 isn’t frequently used with SSL. For stronger security and broader compatibility, it is generally recommended to use the dedicated port 995 for POP3S, which ensures an encrypted connection from the start without relying on the STLS extension.

What are TCP/IP ports?

A TCP/IP port is a unique numerical identifier used to differentiate specific network services or applications running on a device within a TCP/IP network. In TCP/IP communication, data is divided into packets, and each packet contains both source and destination port numbers. Port numbers range from 0 to 65535 and are assigned to different services or protocols.

Port numbers can be categorized into three ranges: well-known ports (0-1023), registered ports (1024-49151), and dynamic or private ports (49152-65535). Well-known ports are reserved for commonly used services, such as port 80 for HTTP (Hypertext Transfer Protocol) and port 443 for HTTPS (HTTP Secure). Registered ports are assigned by the Internet Assigned Numbers Authority (IANA) to specific applications or services. Dynamic or private ports are available for temporary or private use by client applications.

The use of port numbers allows network devices to direct incoming data packets to the appropriate application or service running on a device. When a client wants to communicate with a server, it specifies the destination IP address and port number to establish a connection. The server listens for incoming connections on a specific port, and the client’s data packets are routed to that port to ensure they reach the correct service or application on the server.

Share the Post:
Picture of Gustavo Gallas

Gustavo Gallas

Graduated in Computing at PUC-Rio, Brazil. Specialized in IT, networking, systems administration and human and organizational development​. Also have brewing skills.