Re: [Exim] EHLO,STARTTLS_and_callout,random

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Andreas Metzler
Datum:  
To: exim-users
Betreff: Re: [Exim] EHLO,STARTTLS_and_callout,random
On 2004-04-27 Andrey Tverdokhleb <atverd@???> wrote:
> I have two questions.


> 1. What is the reason for not accepting STARTTLS as the very first
> command in a session?
> Exim 3.x allowed this, but 4.x doesn't and looking at the source
> code it seems like very intentional check.


I assume because it is the right thing to do, a client that tries to
use a SMTP service extension without checking whether the server
offers it seems to be broken.

> I don't mind, but it brakes option -starttls smtp in openssl 0.9.7
> which I used to verify smtp over TLS with 3.x.
> F.e. this command works fine for exim 3.x, but doesn't for 4.32.
> openssl s_client -starttls smtp -connect
> 10.10.10.233:25

[...]

There are alternatives to that.
gnutls-cli -p 25 -s 10.10.10.233
or designed for mail:
swaks -q helo -tls -s 10.10.10.233

http://www.jetmore.org/john/code/#swaks
            cu andreas
--
"See, I told you they'd listen to Reason," [SPOILER] Svfurlr fnlf,
fuhggvat qbja gur juveyvat tha.
Neal Stephenson in "Snow Crash"