Possible yes, but not desirable, those ports are used for ssl too.

You may wish to set this:

    g_ssl_require_login "*,!127.0.0.1"

Greetings list

Is it possible or desirable to turn off all non-ssl protected ports on
SurgeMail (such as POP3 110)?

I am trying to reduce the attack surface on a server which has Apache
web sites (all on HTTPS) and SurgeMail behind a reverse proxy, but port
110 still seems to respond to outside queries.

Thanks for any thoughts.

Neil