Mark Crispin <[EMAIL PROTECTED]> writes: > The IMAP specification (RFC 3501) doesn't allow STARTTLS after > authentication (since STARTTLS is a Not Authenticated state command).
STARTTLS does not enter the Authenticated state, according to 3501. I wonder if all servers follow this though, I recall seeing servers that put you in the authenticated state after (client authenticated) STARTTLS, even without a SASL EXTERNAL login.
