On Thursday, February 27, 2003, at 11:50 AM, Jonathan Angliss wrote:
> Hello Mark,
> On Thursday, February 27, 2003, Mark Edwards wrote...
>> Here's what the creator of uw-imap had to say on the subject of TLS
>> on port 993, and TLS without STARTTLS:
>>> More to the point, the client uses the legacy SSLv23_client_method
>>> when it makes a port 993 connection, and uses the modern
>>> TLSv1_client_method when negotiating a STARTTLS command on port
>>> If Squirrelmail does not do this, then it is broken.
>>>> But TLS without STARTTLS is not supported?
>>> Considering that there is no such thing, it isn't surprising that
>>> something non-existant isn't supported.
>> So ... I'm coming to the conclusion that Squirrelmail is broken when
>> it comes to encrypted communication with imap servers. Or, perhaps
>> I'm totally confused ...
> I think there is some oddities going on here... I did some testing
> over the weekend, and SquirrelMail isn't at fault if at all... it's
> more PHPs fault. The testing I did was completely independent of
> SquirrelMail, and involved a 10 line script, opening a connection,
> writing to the connection, and closing it again. PHP returned errors
> on the connection, reporting that it couldn't start activate an SSL
> mode 1 (or 2) connection. On sending any text to the connection, the
> error you mentioned appears in the log files. I posted to
> news://comp.lang.php last night, so I'm working on finding a solution,
> but I seriously don't think this has anything to do with SquirrelMail
> itself. I know of at least 1 person that has it running with UW IMAP.
Great, thanks for checking that out. Mark Crispin (uw-imapd author)
mentioned that he thought that a client using TLSv1 should be able to
talk to a server that uses SSLv23 (uw-imap does), so I suppose that
means this should be working (yeah?).
Okay, can you find out the exact configuration of the person that has
Squirrelmail running encrypted with uw-imap? Is there anything unusual,
or is it a default compile of all software? What versions of everything
are they using, and what OS?
That might be helpful.
San Francisco, CA