[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug-mailutils] Re: [PATCH] starttls fix
From: |
Simon Josefsson |
Subject: |
[bug-mailutils] Re: [PATCH] starttls fix |
Date: |
Mon, 20 Jan 2003 11:08:23 +0100 |
User-agent: |
Gnus/5.090013 (Oort Gnus v0.13) Emacs/21.3.50 (i686-pc-linux-gnu) |
Wojciech Polak <address@hidden> writes:
> On Sun, 19 Jan 2003 23:56:48 +0100 Simon Josefsson wrote:
>
>> > > Btw, it would be useful if STARTTLS was enabled even if the CA cert
>> > > was not specified. Clients may trust a server cert directly.
>> >
>> > Do you mean "trusted CAs file", i.e. --ssl-cafile ?
>> > If so, then it's not required.
>>
>> You are right, I must have made some error during testing. Still,
>> enabling starttls when there is no client private key and cert would
>> be useful too.
>
> Who says that we require a private key or a certificate in a client
> program? gnu-imap4d and gnu-pop3d are servers, not clients. You can
> connect to them with any IMAP/POP3 client, without specifying any
> private key or a certificate in your client. Try fetchmail as a test.
imap4d doesn't seem to advertise STARTTLS unless the cert/key is
specified:
address@hidden:~/src/mailutils/imap4d$ ./imap4d
Oops, secure memory pool already initialized
* OK IMAP4rev1 Debugging mode
. capability
* CAPABILITY IMAP4rev1 NAMESPACE X-VERSION AUTH=EXTERNAL AUTH=LOGIN AUTH=PLAIN
. OK CAPABILITY Completed
. logout
* BYE Session terminating.
. OK LOGOUT Completed
address@hidden:~/src/mailutils/imap4d$ ./imap4d --ssl-key=/home/jas/certs/sj.key
Oops, secure memory pool already initialized
* OK IMAP4rev1 Debugging mode
. capability
* CAPABILITY IMAP4rev1 NAMESPACE X-VERSION AUTH=EXTERNAL AUTH=LOGIN AUTH=PLAIN
. OK CAPABILITY Completed
. logout
* BYE Session terminating.
. OK LOGOUT Completed
address@hidden:~/src/mailutils/imap4d$ ./imap4d
--ssl-cert=/home/jas/certs/sj.cert
Oops, secure memory pool already initialized
* OK IMAP4rev1 Debugging mode
. capability
* CAPABILITY IMAP4rev1 NAMESPACE X-VERSION AUTH=EXTERNAL AUTH=LOGIN AUTH=PLAIN
. OK CAPABILITY Completed
. logout
* BYE Session terminating.
. OK LOGOUT Completed
address@hidden:~/src/mailutils/imap4d$ ./imap4d
--ssl-key=/home/jas/certs/sj.key --ssl-cert=/home/jas/certs/sj.cert
Oops, secure memory pool already initialized
* OK IMAP4rev1 Debugging mode
. capability
* CAPABILITY IMAP4rev1 NAMESPACE X-VERSION STARTTLS AUTH=EXTERNAL AUTH=LOGIN
AUTH=PLAIN
. OK CAPABILITY Completed
. logout
* BYE Session terminating.
. OK LOGOUT Completed
address@hidden:~/src/mailutils/imap4d$
- [bug-mailutils] [PATCH] starttls fix, Simon Josefsson, 2003/01/19
- Re: [bug-mailutils] [PATCH] starttls fix, Simon Josefsson, 2003/01/19
- [bug-mailutils] Re: [PATCH] starttls fix, Wojciech Polak, 2003/01/19
- [bug-mailutils] Re: [PATCH] starttls fix, Simon Josefsson, 2003/01/19
- [bug-mailutils] Re: [PATCH] starttls fix, Wojciech Polak, 2003/01/20
- [bug-mailutils] Re: [PATCH] starttls fix,
Simon Josefsson <=
- Re: [bug-mailutils] Re: [PATCH] starttls fix, Sergey Poznyakoff, 2003/01/20
- [bug-mailutils] Re: [PATCH] starttls fix, Wojciech Polak, 2003/01/20
- [bug-mailutils] Re: [PATCH] starttls fix, Simon Josefsson, 2003/01/20
Re: [bug-mailutils] [PATCH] starttls fix, Sergey Poznyakoff, 2003/01/19