|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [offtopic] When is STARTTLS allowed?
From: Victor Duchovni (Victor.Duchovni
MorganStanley.com)
Date: Wed Jan 31 2007 - 12:21:37 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, Jan 31, 2007 at 04:14:52PM -0200, Pedro Lamar?o wrote:
> First off, I'm sorry to post this rather offtopic question.
> I searched Google Groups for a USENET group specific to SMTP and found none.
>
> I've just read RFC 2487 and was left wondering exactly when is STARTTLS
> allowed.
> The obvious use case is to use it just after the TCP connection was
> established, when the session is at the "initial" state.
> But is it allowed after MAIL, when the session is at the "envelope" state?
> Is it allowed after RCPT during the "envelope" state?
> (This state terminology is mine, sorry if it is too confusing; I'm
> trying to build a "state machine" picture out of the protocol.)
>
> The RFC merely states that, after STARTTLS handshaking completes, the
> connection goes back to the "initial" state and a HELO or EHLO must be
> issued.
With SMTP, "STARTTLS" is allowed only between "EHLO" and "MAIL",
and only if the server's ESMTP EHLO response includes "250-STARTTLS"
(or ends with "250 STARTTLS").
--
Viktor.
Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.
To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:majordomopostfix.org?body=unsubscribe%20postfix-users>
If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]