On Wed, 18 Aug 2004, spaze wrote: > Wednesday, August 18, 2004, 5:14:49 PM, Mark Powell wrote: > > Do you have it running on port 25 optionally supporting SSL by STARTTLS? > > no, on dedicated port (465) > > > Or is that not possible? > > from my POV, no. stunnel is just a tunnel ;) and encrypts everything. It > just can't decide when to encrypt and when not (at least I think, I haven't > done much research into it)
I think you're right. I thought it could just forget the encryption if a starttls was not issued as the 1st command, but it seems not. The completely encrypted session along with the now working smtp auth means qpsmtpd+stunnel can provide a service we have long been lacking. I've just set this up here, but it would still be interesting to also see your config files. > > How do you find pperl and which version of perl are you running it with? > > I'm running pperl as I'm little concerned about the pure perl server > performance and haven't tried forkserver as there's no word about it > anywhere ;) I was running it with 5.8.3 from Debian testing, and haven't > found any problem. Recently I've upgraded the distro to 5.8.4 (again from > Debian package) and also changed Linux kernel from 2.4.26 to 2.6.7 and no > problem again. SpamAssassin stopped working after PErl upgrade (because of > online tests I think - when disabled it run ok), but that's another story > and upgrade to 3.0.0-pre version fixed it. I'm doing some testing now. Perl v5.8.5 and PPerl 0.25. Seems ok so far, but it's not under real load. > > I'm tempted to try it, but stories of problems always put me off. > > I know^H^H^H^Hhave read about the problems, but have tried it and it works, > so I'm quite lucky. Hopefully I will too :) Cheers. -- Mark Powell - UNIX System Administrator - The University of Salford Information Services Division, Clifford Whitworth Building, Salford University, Manchester, M5 4WT, UK. Tel: +44 161 295 4837 Fax: +44 161 295 5888 www.pgp.com for PGP key
