[5062] in cryptography@c2.net mail archive
RE: sendmail patch for smtps (SSL-SMTP)?
daemon@ATHENA.MIT.EDU (Lucky Green)
Mon Jul 5 20:58:41 1999
From: "Lucky Green" <shamrock@netcom.com>
To: "'Enzo Michelangeli'" <em@who.net>, <cryptography@c2.net>
Date: Mon, 5 Jul 1999 09:59:58 -0700
In-Reply-To: <199907051145.HAA26378@pop01.globecomm.net>
> From: Enzo Michelangeli [mailto:em@who.net]
> Actually, the "simple wrapping" has been deprecated also for
> POP3 and IMAP, essentially to save port numbers and simplify
> the firewall setup. There are IETF drafts about using the
> "STARTTLS" mechanism also for those protocols: they can be
> found searching the draft pages at www.ietf.org .
Ouch. Seems somebody is busy making certain that one won't be able to use
standard US distributions of these implementations much longer to trivially
implement the secure protocols by adding a wrapper. This is very bad news,
indeed. As for simplifying the firewall setup, I would question that forcing
a secure and an insecure service to run on the same port adds to the
security of a site.
Thanks for the info,
--Lucky
