On Thu, 27 Feb 2003, Mark Edwards wrote: > Okay, I took this issue over to the Squirrelmail developer's list, and > this is what I got out of them. Squirrelmail does TLS, not SSL, and it > does not support the STARTTLS command.
That is a meaningless statement. TLS is used with a STARTTLS command on the regular port; SSL is used with a separate port. If you support TLS, you use the STARTTLS command. > imapd can do SSL on, say port 993, or it can do TLS with STARTTLS on > port 143, right? Correct. More to the point, the client uses the legacy SSLv23_client_method when it makes a port 993 connection, and uses the modern TLSv1_client_method when negotiating a STARTTLS command on port 143. If Squirrelmail does not do this, then it is broken. > But TLS without STARTTLS is not supported? Considering that there is no such thing, it isn't surprising that something non-existant isn't supported. -- Mark -- http://staff.washington.edu/mrc Science does not emerge from voting, party politics, or public debate.
