OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: ssmtp
From: Liviu Daia (Liviu.Daiaimar.ro)
Date: Sat Aug 26 2000 - 23:09:47 CDT

On 27 August 2000, Brad Knowles <blkskynet.be> wrote:
> At 8:05 PM +0200 2000/8/26, Christian Kurz wrote:
>
> > If I'm not mistaken ssmtp stands for SMTP over SSL.
>
> IIRC, the official standard for handling SMTP over SSL (now
> called TLS) is the "TLSSMTP" extension. I believe that work on
> something like this would probably have to wait until after there is
> some method of incorporating SASL authentication over SMTP, because I
> believe that TLSSMTP will build on top of that.

    Brad, you're not paying attention. AFAICT, aside from both
being exceptionally messy protocols, TLSSMTP and SASL are completely
orthogonal to one another. See RFCs 2246 ("The TLS Protocol"), 2487
("SMTP Service Extension for Secure SMTP over TLS"), and 2222 ("Simple
Authentication and Security Layer (SASL)").

> So, if this is what you really want, I fear that you have a bit
> of a wait if you're going to stick with postfix. ;-(

    SMTP-AUTH by means of SASL has been in Postfix since snapshot
20000507. As for TLS support, Lutz Jänicke has a patch at

        http://www.aet.TU-Cottbus.DE/personen/jaenicke/postfix_tls/

    Regards,

    Liviu Daia 

-- 
Dr. Liviu Daia               e-mail:   Liviu.Daiaimar.ro
Institute of Mathematics     web page: http://www.imar.ro/~daia
of the Romanian Academy      PGP key:  http://www.imar.ro/~daia/daia.asc