> From: Enzo Michelangeli [mailto:[EMAIL PROTECTED]]
> Actually, the "simple wrapping" has been deprecated also for
> POP3 and IMAP, essentially to save port numbers and simplify
> the firewall setup. There are IETF drafts about using the
> "STARTTLS" mechanism also for those protocols: they can be
> found searching the draft pages at www.ietf.org .
Ouch. Seems somebody is busy making certain that one won't be able to use
standard US distributions of these implementations much longer to trivially
implement the secure protocols by adding a wrapper. This is very bad news,
indeed. As for simplifying the firewall setup, I would question that forcing
a secure and an insecure service to run on the same port adds to the
security of a site.
Thanks for the info,
--Lucky
