Matt Sergeant wrote:
I'm not so sure. The TLS spec actually specifies what details need to be
kept...
That shouldn't be a problem:
RFC-2487
5.2 Result of the STARTTLS Command
Upon completion of the TLS handshake, the SMTP protocol is reset to
the initial state (the state in SMTP after a server issues a 220
service ready greeting). The server MUST discard any knowledge
obtained from the client, such as the argument to the EHLO command,
which was not obtained from the TLS negotiation itself.
It turns out that the list of Connection parameters which I am copying
is exactly those parameters which do not depend on information received
from the client. ;-)
+ remote_host
+ remote_ip
+ remote_info
+ remote_port
+ local_ip
+ local_port
+ relay_client
I'll change the comment in lib/Qpsmtpd/Connection.pm to reflect that
understanding, so if any additional derived parameters get added to
Connection objects, they can be safely added to that list and it will
continue to DTRT.
John
