On Thu, 29 Jan 1998, Ken Hornstein wrote:
> Okay, so let me get this straight -- you run a ssl proxy on your local
> machine and tell your client to connect to a "fake" POP/IMAP server
> on your local box, which proxies the connection to the real SPOP/SIMAP
> server, and you authenticate using plaintext passwords over the
> encrypted channel? Interesting. Do you have edsll ported to Windows
> or the Mac?
there are a few commercial SSL client-local proxies, such as SSR or
SafePassage, that can do this. i don't know of any free versions, though.
incidentally, this SSL-tunnelling approach is what we're planning to use
for Kerberized web access (we're scrapping our plug-in work, thankfully) -
except we're not using passwords, we're adding Kerberos v4 to SSLv3.
> I'm curious ... do a lot of mail clients (POP or IMAP) currently support
> SSL? I wasn't aware that any did, but I haven't really been following
> it lately.
not currently, but perhaps in the near future. see the IETF's TLS working
group (http://www.ietf.org/html.charters/tls-charter.html) for details.
---
Dug Song <[EMAIL PROTECTED]>
University of Michigan ITD Systems Research Programmer
http://www-personal.umich.edu/~dugsong
