On Fri, 13 May 2005, Bob wrote: > John Peacock gave me a link to the starttls rfc. > http://www.faqs.org/rfcs/rfc2487.html > > As far as starttls on port 25, the server cannot EVER require > tls, according to rfc(unless an internal relay), but once a client > requests tls, anything goes for a custom(write it yourself) server > configuration (can require client cert etc).
Yes, unfortunately the RFC didn't think about the business requirements of places that deal with healthcare. HIPPA requires a secure channel, and so for healthcare<->healthcare we enforce TLS, valid certs, and do cert management. I'd like to be able to encode that in qpsmtpd.
