Article delegate-en/2800 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: SSLway on demand for STARTTLS (Re: SSLway / EHLO / STARTTLS)
19 Dec 2004 23:07:24 GMT (Yutaka Sato)
The DeleGate Project

On 12/19/04(19:00) I (Yutaka Sato) wrote
in <_A2799@delegate-en.ML_>
 |I agree that the implementation of STARTTLS in DeleGate should be more
 |neat, but I think it should be implemented in each protocol interpreter
 |of each application protocol, as described in
 |<URL:> (in Japanese,
 |sorry) while keeping the code of SSLway as simple as possible.
 |In this approach, we can realize "starting TLS coder (sslway) only when
 |it is necessary", as realized in STARTTLS for FTP-data.  Also it will
 |ease the replacement of SSLway with other simple TLS coder in future,
 |like s_server/s_client of OpenSSL.
 |So I extended "smtp.c" to support such "SSLway on demand" by extending
 |the CMAP parameter.  It can be used as
 |  CMAP=sslway:FCL:starttls
 |instead of
 |  FCL="sslway -St"
 |  CMAP=sslway:FSV:starttls
 |instead of
 |  FSV="sslway -St"

I implemented this for STARTTLS in FTP-DeleGate too, thus you can wrap
FTP by SSL with


instead of

  CMAP="sslway -St:FCL:ftp" CMAP=sslway:FCL:ftp-data



instead of

  CMAP="sslway -St:FSV:ftp" CMAP=sslway:FSV:ftp-data

 |The pre-release version 8.10.4-pre1 implementing above functions is at

The current snap-shot of DeleGate including this extension is uploaded
as 8.10.4-pre2.

  D G   Yutaka Sato <>
 ( - )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]