On Mon, 5 Jul 2004, Matt Sergeant wrote: > On 5 Jul 2004, at 16:49, Charlie Brady wrote: > > > What needs to be done is: > > > > - Offer starttls in response to EHLO > > - parse and validate "starttls" verb. > > - Return "220 Ready to start TLS" > > - exec stunnel wrapped around another instance of qpsmtpd > > I don't think this is what's required. I could be wrong, but I'm pretty > sure you just have something like: > > exec tcpserver (flags) stunnel (flags) qpsmtpd > > More recent stunnels will implement EHLO and STARTTLS and then pass the > remainder through to qpsmtpd.
That's fine, if it really is stunnel you want to run. I particularly wanted to support any SSL wrapper, including sslio from Gerrit Pape's ipsvd package. There's also the risk that stunnel in smtp proxy mode may interfere with some of qpsmtpd's testing. --- Charlie
