+----- On Thu, 02 Sep 1999 23:38:01 +0800, Ng Pheng Siong writes:
| On Wed, Sep 01, 1999 at 01:45:00PM -0700, Wil Boucher wrote:
| > Does anyone know of a program like sslwrap or stunnel that can fallback to
| > a non-ssl connection if the SSL handshake fails?
| >
| > example..
| >
| > connect to mail port 25, client supports ssl, connection is sll
| > other client connects to port 25, dosen;t support SSL connection falls back
| > to non-SSL
|
| I'd imagine something like this: (Think of the following as
| pseudo-code if you don't recognise the language. ;-)
With port 25 you shouldn't start with an SSL handshake, you should
report that you are able to handle SSL/TLS by including STARTTLS as one
of your capabilities in the response to EHLO, the initiator can then
issue a STARTTLS command and begin the SSL/TLS handshake. This is how
stunnel works more or less.
/Michael
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]