IETF Logo Mail Archive

Re: STARTTLS & EHLO: Errata text?

Tony Finch <dot@dotat.at> Fri, 30 January 2009 18:31 UTC

Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n0UIVloC098727 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 30 Jan 2009 11:31:47 -0700 (MST) (envelope-from owner-ietf-smtp@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n0UIVlYu098726; Fri, 30 Jan 2009 11:31:47 -0700 (MST) (envelope-from owner-ietf-smtp@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-smtp@mail.imc.org using -f
Received: from ppsw-7.csi.cam.ac.uk (ppsw-7.csi.cam.ac.uk [131.111.8.137]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n0UIVapI098718 for <ietf-smtp@imc.org>; Fri, 30 Jan 2009 11:31:46 -0700 (MST) (envelope-from fanf2@hermes.cam.ac.uk)
X-Cam-AntiVirus: no malware found
X-Cam-SpamDetails: not scanned
X-Cam-ScannerInfo: http://www.cam.ac.uk/cs/email/scanner/
Received: from hermes-2.csi.cam.ac.uk ([131.111.8.54]:38090) by ppsw-7.csi.cam.ac.uk (smtp.hermes.cam.ac.uk [131.111.8.157]:25) with esmtpa (EXTERNAL:fanf2) id 1LSy9N-00025q-Ne (Exim 4.70) (return-path <fanf2@hermes.cam.ac.uk>); Fri, 30 Jan 2009 18:31:33 +0000
Received: from fanf2 (helo=localhost) by hermes-2.csi.cam.ac.uk (hermes.cam.ac.uk) with local-esmtp id 1LSy9N-0000tE-A9 (Exim 4.67) (return-path <fanf2@hermes.cam.ac.uk>); Fri, 30 Jan 2009 18:31:33 +0000
Date: Fri, 30 Jan 2009 18:31:33 +0000
From: Tony Finch <dot@dotat.at>
X-X-Sender: fanf2@hermes-2.csi.cam.ac.uk
To: Paul Smith <paul@pscs.co.uk>
cc: John C Klensin <john+smtp@jck.com>, Tony Hansen <tony@att.com>, ietf-smtp@imc.org
Subject: Re: STARTTLS & EHLO: Errata text?
In-Reply-To: <4982CAB7.1030308@pscs.co.uk>
Message-ID: <alpine.LSU.2.00.0901301829520.4795@hermes-2.csi.cam.ac.uk>
References: <497DE492.4080506@pscs.co.uk> <497DED29.70402@att.com> <497ED420.30708@pscs.co.uk> <alpine.LSU.2.00.0901271403220.4546@hermes-2.csi.cam.ac.uk> <497F86CB.60904@att.com> <alpine.LSU.2.00.0901281434440.4546@hermes-2.csi.cam.ac.uk> <498088B8.9040404@pscs.co.uk> <alpine.LSU.2.00.0901291310080.4546@hermes-2.csi.cam.ac.uk> <4981C0D5.1010401@pscs.co.uk> <4981C6BD.2040900@att.com> <37F39FF37390694B69567838@PST.JCK.COM> <4981E1AB.9000002@att.com> <3B757DEDD02F9E7C1ADBD4EF@PST.JCK.COM> <4982CAB7.1030308@pscs.co.uk>
User-Agent: Alpine 2.00 (LSU 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
Sender: owner-ietf-smtp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-smtp/mail-archive/>
List-ID: <ietf-smtp.imc.org>
List-Unsubscribe: <mailto:ietf-smtp-request@imc.org?body=unsubscribe>

On Fri, 30 Jan 2009, Paul Smith wrote:
>
> Just going back a step, shouldn't it be worded something like
>
> "The client MUST send a EHLO command after a successful TLS negotiation
> if it wishes to start a mail transaction or use any SMTP extensions."
>
> Because that's actually what we mean.

Yes.

> Also, saying 'or a command that does not require that a mail transaction
> be open' means that you could use an SMTP extension which was advertised
> before the STARTTLS, as long as it doesn't involve a mail transaction,
> without resending EHLO.

No, because the client must disregard the pre-TLS extension list because
the protocol is reset to its initial state.

Tony.
-- 
f.anthony.n.finch  <dot@dotat.at>  http://dotat.at/
GERMAN BIGHT HUMBER: SOUTHWEST 5 TO 7. MODERATE OR ROUGH. SQUALLY SHOWERS.
MODERATE OR GOOD.

v2.23.0 | Report a Bug | By Email