On 5 Jul 2004, at 16:49, Charlie Brady wrote:
What needs to be done is:
- Offer starttls in response to EHLO - parse and validate "starttls" verb. - Return "220 Ready to start TLS" - exec stunnel wrapped around another instance of qpsmtpd
I don't think this is what's required. I could be wrong, but I'm pretty sure you just have something like:
exec tcpserver (flags) stunnel (flags) qpsmtpd
More recent stunnels will implement EHLO and STARTTLS and then pass the remainder through to qpsmtpd.
[Caveat: I haven't tried any of this, but my co-worker tells me this will work]
Matt.
