Re: STARTTLS & EHLO: Errata text?
SM <sm@resistor.net> Fri, 30 January 2009 03:56 UTC
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n0U3uE65056166 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 29 Jan 2009 20:56:14 -0700 (MST) (envelope-from owner-ietf-smtp@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n0U3uE0q056165; Thu, 29 Jan 2009 20:56:14 -0700 (MST) (envelope-from owner-ietf-smtp@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-smtp@mail.imc.org using -f
Received: from ns1.qubic.net (ns1.qubic.net [208.69.177.116]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n0U3u3GZ056154 for <ietf-smtp@imc.org>; Thu, 29 Jan 2009 20:56:14 -0700 (MST) (envelope-from sm@resistor.net)
Received: from subman.resistor.net ([10.0.0.1]) (authenticated bits=0) by ns1.qubic.net (8.14.4.Alpha0/8.14.4.Alpha0) with ESMTP id n0U3tq6a019847 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 29 Jan 2009 19:55:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=resistor.net; s=mail; t=1233287761; x=1233374161; bh=+RYpV5sSr8v/xpUhtgBPjQTNG8mQCNNLlwiPA575BZI=; h=Message-Id:Date:To:From:Subject:Cc:In-Reply-To:References: Mime-Version:Content-Type; b=dphUX3OqCleHevPafOo/Lbjrn0ynWk8qyQPTswHOiZ1wdaqysB+CG0pKS6J69l/w7 sqOTghq69yu8UureYVU1slFcnm3DbhgOeOuRdgVbAk+uTMBi2BlPB+GCkt+Y/L8D+X GDvH1Z2xG2J1NjuC0rVYIQc9oewq84PmZPkqgxpA=
DomainKey-Signature: a=rsa-sha1; s=mail; d=resistor.net; c=simple; q=dns; b=ngWqOChmWztBE5AwEya4U+BpAQvwXggkUIE6pyjsoPIJ39h7ttgZGtLbM8SBunC96 S0b9ePla3KoOCMXFVtTSZ4H+6Au7ZEUFxNjKaUI/lApLejI9JcPnd7wjZcA+H7nZ5KG 0/nX6kdMNG4zFBqe587HTaqalcEQjSdd2GSXNuU=
Message-Id: <6.2.5.6.2.20090129193935.033d84f8@resistor.net>
X-Mailer: QUALCOMM Windows Eudora Version 6.2.5.6
Date: Thu, 29 Jan 2009 19:51:57 -0800
To: Ned Freed <ned.freed@mrochek.com>
From: SM <sm@resistor.net>
Subject: Re: STARTTLS & EHLO: Errata text?
Cc: ietf-smtp@imc.org
In-Reply-To: <01N4VHJ5MRE000007A@mauve.mrochek.com>
References: <497DE492.4080506@pscs.co.uk> <497DED29.70402@att.com> <497ED420.30708@pscs.co.uk> <alpine.LSU.2.00.0901271403220.4546@hermes-2.csi.cam.ac.uk> <497F86CB.60904@att.com> <alpine.LSU.2.00.0901281434440.4546@hermes-2.csi.cam.ac.uk> <498088B8.9040404@pscs.co.uk> <alpine.LSU.2.00.0901291310080.4546@hermes-2.csi.cam.ac.uk> <4981C0D5.1010401@pscs.co.uk> <4981C6BD.2040900@att.com> <37F39FF37390694B69567838@PST.JCK.COM> <4981E1AB.9000002@att.com> <6.2.5.6.2.20090129094120.02f234a0@resistor.net> <01N4VB00O5UQ00007A@mauve.mrochek.com> <6.2.5.6.2.20090129142242.02ef4a60@resistor.net> <01N4VHJ5MRE000007A@mauve.mrochek.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Sender: owner-ietf-smtp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-smtp/mail-archive/>
List-ID: <ietf-smtp.imc.org>
List-Unsubscribe: <mailto:ietf-smtp-request@imc.org?body=unsubscribe>
At 15:59 29-01-2009, Ned Freed wrote: >Yes, but the text currently says MUST, not SHOULD: > > The server MUST discard any knowledge > obtained from the client, such as the argument to the EHLO command, > which was not obtained from the TLS negotiation itself. >I'm arguing that this MUST should be a SHOULD. Alexey proposed a change that avoids the issue as it does not change the MUST. >Actually, the specification is quite clear that the session state is >reset to that of where the banner line has just been returned: > > Upon completion of the TLS handshake, the SMTP protocol is reset to > the initial state (the state in SMTP after a server issues a 220 > service ready greeting). I quoted that part previously. It's quite clear to me what "reset to initial state" means. >So if the client sends a MAIL FROM without first sending a EHLO/HELO it is >doing so to a server that's supposed to be in the "initial banner sent, no >EHLO/HELO seen" state. IMO a server is perfectly entitled to refuse the MAIL >FROM in this case. > >But I fail to see how this has any bearing on the point I've raised, which has >to do with the server retaining session history after STARTTLS - something the >specification currently forbids. I was not addressing the question of session history; I was commenting on the EHLO requirement. >Frankly, while I have no problem with clarifying the specification, >I don't buy >the argument that the nonissuance of a EHLO/HELO after STARTTLS and >before MAIL >FROM is in compliance with the SHOULD. Again, the specification is very clear >about the required session state and a predictable consequence of that is that >a HELO/EHLO is now required. IMO this is failing to understand the likely >consequences of omitting the EHLO/HELO. Agreed. Regards, -sm
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? Tony Finch
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? ned+ietf-smtp
- Re: STARTTLS & EHLO: Errata text? Tony Finch
- Re: STARTTLS & EHLO: Errata text? Tony Finch
- Re: STARTTLS & EHLO: Errata text? Tony Finch
- Re: STARTTLS & EHLO: Errata text? Russ Allbery
- Re: STARTTLS & EHLO: Errata text? ned+ietf-smtp
- Re: STARTTLS & EHLO: Errata text? SM
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? John C Klensin
- Re: STARTTLS & EHLO: Errata text? Paul Smith
- Re: STARTTLS & EHLO: Errata text? Paul Smith
- Re: STARTTLS & EHLO Tony Hansen
- Re: STARTTLS & EHLO: Errata text? Russ Allbery
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? ned+ietf-smtp
- Re: STARTTLS & EHLO: Errata text? John C Klensin
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? ned+ietf-smtp
- Re: STARTTLS & EHLO: Errata text? Alexey Melnikov
- Re: STARTTLS & EHLO: Errata text? Alexey Melnikov
- Re: STARTTLS & EHLO: Errata text? SM
- Re: STARTTLS & EHLO: Errata text? ned+ietf-smtp
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? Bill McQuillan
- Re: STARTTLS & EHLO: Errata text? John C Klensin
- Re: STARTTLS & EHLO: Errata text? SM
- Re: STARTTLS & EHLO: Errata text? Alexey Melnikov
- Re: STARTTLS & EHLO: Errata text? Tony Hansen
- Re: STARTTLS & EHLO John C Klensin
- Re: STARTTLS & EHLO Tony Hansen
- Re: STARTTLS & EHLO Paul Smith
- Re: STARTTLS & EHLO Tony Finch
- Re: STARTTLS & EHLO Hector Santos
- Re: STARTTLS & EHLO SM
- Re: STARTTLS & EHLO John C Klensin
- Re: STARTTLS & EHLO Tony Hansen
- Re: STARTTLS & EHLO Peter Bowyer
- Re: STARTTLS & EHLO Hector Santos
- Re: STARTTLS & EHLO Paul Smith
- Re: STARTTLS & EHLO Tony Finch
- Re: STARTTLS & EHLO Paul Smith
- Re: STARTTLS & EHLO John C Klensin
- Re: STARTTLS & EHLO Tony Hansen
- Re: STARTTLS & EHLO Tony Finch
- Re: STARTTLS & EHLO Alessandro Vesely
- Re: STARTTLS & EHLO Paul Smith
- Re: STARTTLS & EHLO Alexey Melnikov
- Re: STARTTLS & EHLO Tony Finch
- Re: STARTTLS & EHLO John C Klensin
- Re: STARTTLS & EHLO Tony Hansen
- STARTTLS & EHLO Paul Smith
- Re: STARTTLS & EHLO: Errata text? SM
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? SM
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? John C Klensin
- Re: STARTTLS & EHLO: Errata text? Tony Finch
- RFC 1123bis? Hector Santos
- Re: STARTTLS & EHLO: Errata text? John C Klensin
- Re: STARTTLS & EHLO: Errata text? Hector Santos
- Re: STARTTLS & EHLO: Errata text? John C Klensin
- Re: STARTTLS & EHLO: Errata text? Tony Finch
- Re: STARTTLS & EHLO: Errata text? SM