Hello,
I just posted a patch to get Eudora 5 to negotiate TLS with OpenSSL.
My intention was to advertise AUTH only to tls-connected clients, so
I could authenticate my users over a secure connection and then allow
them to relay.
I pursued and solved my SSL negotiation problem only to discover that
Eudora 5 will not perform AUTH after STARTTLS, as I now see was discussed
in detail on this list over a year ago (Jan, 2003). Dang. Now I can either:
- Advertise AUTH to all, and my Eudora users can authenticate for relaying,
but not over TLS.
- Advertise AUTH only over TLS, and my Eudora users can send from their
ISP accounts or relay off their ISPs servers or pound sand or whatever.
I'd like to handle their outbound traffic through our servers, though.
Securely, if possible.
When this was discussed last year, various folks put together the
table below. Someone said they'd submitted the problem to Qualcomm.
Anybody here had a chance to test a newer version of Eudora? Well,
my real question is simply, "Will Eudora now do AUTH over TLS?", but
I find no answers at Qualcomm or Google. Anybody have any new info,
especially on:
Supports AUTH type PLAIN after STARTTLS connection: No
?
Eudora for MS-Windows:
Supports STARTTLS Command on port 25: Yes
Supports STARTTLS Command other ports: Yes
Supports TLS in wrapper mode on port 25: Yes
Supports TLS in wrapper mode on other ports: Yes
Supports AUTH type PLAIN on a non-TLS connection: Yes
Supports AUTH type PLAIN after STARTTLS connection: No
Supports AUTH type PLAIN over wrapper mode TLS connection: No
Supports AUTH type LOGIN on a non-TLS connection: No
Supports AUTH type LOGIN after STARTTLS connection: No
Supports AUTH type LOGIN over wrapper mode TLS connection: No
Supports AUTH type CRAM-MD5 on a non-TLS connection: Yes
Supports AUTH type CRAM-MD5 after STARTTLS connection: No
Supports AUTH type CRAM-MD5 over wrapper mode TLS connection: No
--
Robert Roselius
Batky-Howell, Inc. - Educating Professional Software Developers
