Pavel Gorshkov wrote:
On Sat, Dec 31, 2005 at 04:26:46PM +0100, Goetz Babin-Ebell wrote:
This patch solves only smtp.
But there are many more protocols using STARTTLS

Has anybody thought about a plugin interface or a different way
to handle the startup ?

I agree that it would be better to have a generalized approach.
Here's a relevant excerpt from gnutls-cli(1):

   -s, --starttls
      Connect, establish a plain session and start TLS when EOF or a
      SIGALRM is received.

Seems usable.
But what if you want to use s_client with -starttls in a script ?

this looks like a perfect solution except maybe when dealing with
a tricky binary protocol requiring you to perform multiple
authentication steps before a <starttls>.

For these cases (and others) my -startcmd <cmd> is the best way.
but normally starttls is used in sane (clear text) protocols...

(sorry for mentioning gnutls on this list)

It's OK, you didn't say "Jehovah"
(which would lead to your stoning... ;-) )

By the way: Hapy new year...)



DMCA: The greed of the few outweighs the freedom of the many

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Reply via email to