Re: Incorrect MIME headers separators in 0.9.5a

Mon, 05 Feb 2001 14:24:31 -0800 

I find this topic thread amusing in that I've encountered a similar issue
located within Netscape's, err..iPlanet's Proxy server with regard to
the insertion of HTTP headers into the stream.  I discovered this during
the testing of my https library (which uses OpenSSL of course!).

The proxy was not terminating the inserted HTTP with CRLF as the
RFCs dictate but was rather terminating with an LF only.  Yes, I've
read the "tolerance" section too but find it amusing that I had to
patch my wonderful library to "tolerate" that server (which is their
latest release) because they've failed to follow the spec completely.
And yes I've also been in contact with their engineering dept to
inform them of this oversight.

I guess the bright side of all this is that if everything worked as
spec'd, we'd be out of jobs, eh?  Of course, all the code WE
write doesn't contain any bugs.  Uh huh...


----- Original Message -----
From: Emmanuel Gadaix <[EMAIL PROTECTED]>
To: Jean-Marc Desperrier <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, January 30, 2001 9:07 AM
Subject: Re: Incorrect MIME headers separators in 0.9.5a


>
>
> Lotus has of course been contacted, and I agree that it is mostly their
mistake.
>
> But, considering they've been advertising S/MIME functionality for YEARS
> already, and that it still isn't working correctly (up to latest 5.06a
release
> downloaded yesterday), I thought that the only hope to have
interoperability
> would be to get a quick patch from OpenSSL.
>
> On 30/01/2001 13:53:29 Jean-Marc Desperrier wrote:
>
> >
> >I suggest Emmanuel that you contact Lotus and tell them about this bug in
> >_their_ software.
> >
> >It fails to handle messages that have a correct MIME syntax (see RFC
2045,
> 2046,
> >2047), and it should be corrected for better interoperability.
> >
>
>
> -----------------------------------------------------------------
>         Visit our Internet site at http://www.reuters.com
>
> Any views expressed in this message are those of  the  individual
> sender,  except  where  the sender specifically states them to be
> the views of Reuters Ltd.
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> Development Mailing List                       [EMAIL PROTECTED]
> Automated List Manager                           [EMAIL PROTECTED]
>

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to