Pavel Gorshkov wrote:
On Sat, Dec 31, 2005 at 04:26:46PM +0100, Goetz Babin-Ebell wrote:This patch solves only smtp. But there are many more protocols using STARTTLSHas anybody thought about a plugin interface or a different way to handle the startup ?I agree that it would be better to have a generalized approach. Here's a relevant excerpt from gnutls-cli(1): -s, --starttls Connect, establish a plain session and start TLS when EOF or a SIGALRM is received.
Seems usable. But what if you want to use s_client with -starttls in a script ?
this looks like a perfect solution except maybe when dealing with a tricky binary protocol requiring you to perform multiple authentication steps before a <starttls>.
For these cases (and others) my -startcmd <cmd> is the best way. but normally starttls is used in sane (clear text) protocols...
(sorry for mentioning gnutls on this list)
It's OK, you didn't say "Jehovah" (which would lead to your stoning... ;-) ) By the way: Hapy new year...) Bye Goetz -- DMCA: The greed of the few outweighs the freedom of the many
Description: S/MIME Cryptographic Signature