Re: pre-connect and smtp ?

From: Brian Stafford <brian stafford uklinux net>
To: christophe barbe <christophe barbe ml online fr>
Cc: balsa mailing-list <balsa-list gnome org>
Subject: Re: pre-connect and smtp ?
Date: Tue, 21 Aug 2001 08:17:26 +0100

On Mon, 20 August 21:33 christophe barbe wrote:
> I've add your patch but the smrp session seems to be the same and my
> request is rejected.

OK. It is likely that your MTA does not permit unauthorised relay.
I'm surmising that you must either present a valid client certificate
or be connecting from the localhost.  I don't see the MTA offering the
AUTH extension in the protocol trace you sent, so presumably it isn't
offered after securing the connection with STARTTLS either.

At present libESMTP does not implement certificate handling for STARTTLS.
Looks like I'm going to have to write that code :)  The main reason I haven't
done so yet is that certificate verification strategies are a little different
for SMTP compared to session mode protocols.  I need to take advice on that
issue.

For now you will have to use port forwarding.  Presumably the MTA is fooled
into believing that you are on the localhost and permits relay.  Port
forwarding,
it seems, can bypass a system administrator's access control strategies as
well as all its other problems.

Brian

Follow-Ups:
- Re: pre-connect and smtp ?
  - From: christophe barbé

References:
- Re: pre-connect and smtp ?
  - From: christophe barbe
- Re: pre-connect and smtp ?
  - From: Brian Stafford
- Re: pre-connect and smtp ?
  - From: christophe barbé
- Re: pre-connect and smtp ?
  - From: Brian Stafford
- Re: pre-connect and smtp ?
  - From: christophe barbé
- Re: pre-connect and smtp ?
  - From: Brian Stafford
- Re: pre-connect and smtp ?
  - From: christophe barbé
- Re: pre-connect and smtp ?
  - From: Brian Stafford
- Re: pre-connect and smtp ?
  - From: christophe barbe

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]