On 12/19/04(19:00) I (Yutaka Sato) wrote
|I agree that the implementation of STARTTLS in DeleGate should be more
|neat, but I think it should be implemented in each protocol interpreter
|of each application protocol, as described in
|<URL:http://www.delegate.org/mail-lists/delegate/9913> (in Japanese,
|sorry) while keeping the code of SSLway as simple as possible.
|In this approach, we can realize "starting TLS coder (sslway) only when
|it is necessary", as realized in STARTTLS for FTP-data. Also it will
|ease the replacement of SSLway with other simple TLS coder in future,
|like s_server/s_client of OpenSSL.
|So I extended "smtp.c" to support such "SSLway on demand" by extending
|the CMAP parameter. It can be used as
| FCL="sslway -St"
| FSV="sslway -St"
I implemented this for STARTTLS in FTP-DeleGate too, thus you can wrap
FTP by SSL with
CMAP="sslway -St:FCL:ftp" CMAP=sslway:FCL:ftp-data
CMAP="sslway -St:FSV:ftp" CMAP=sslway:FSV:ftp-data
|The pre-release version 8.10.4-pre1 implementing above functions is at
The current snap-shot of DeleGate including this extension is uploaded
D G Yutaka Sato <firstname.lastname@example.org> http://delegate.org/y.sato/
( - ) National Institute of Advanced Industrial Science and Technology
_< >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller