Support for TLS
Philippe LeCavalier
support at plecavalier.com
Wed Jan 26 20:07:36 GMT 2011
On Wed, 2011-01-26 at 20:29 +0100, Johannes Stezenbach wrote:
> On Wed, Jan 26, 2011 at 12:45:46PM -0500, Philippe LeCavalier wrote:
> > On Wed, 2011-01-26 at 18:19 +0100, Sebastian Spaeth wrote:
> > > But it would put more burden on the user to a question
> > > which is not always obvious. "Does your server speak TLS or SSLv3 ?" ;-)
> > I think most can 'telnet their.host.com 143' to get the min. supported
> > options, no?
>
> SSL and TLS use binary encoding, so telnet does not work.
> (And the IMAPS port is usually 993.). "openssl s_client"
> would work but is too complicated for normal people.
I may have misunderstood. I meant that ppl could check what their server
supports merely by telneting to it...
> IMHO this is too much hassle. A config file entry would be better.
> Default to TLSv1, if connection fails print a message to instruct
> the user to try SSLv3.
...but this sounds better than tasking the user. I think everyone would
agree.
Phil
More information about the OfflineIMAP-project
mailing list