Re: POP handling commands given in wrong state

Randall Gellens <randy@Qualcomm.Com> Tue, 26 July 2011 18:38 UTC

Received: from hoffman.proper.com (localhost [127.0.0.1]) by hoffman.proper.com (8.14.4/8.14.3) with ESMTP id p6QIcxnl019832 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 26 Jul 2011 11:38:59 -0700 (MST) (envelope-from owner-ietf-pop3ext@mail.imc.org)
Received: (from majordom@localhost) by hoffman.proper.com (8.14.4/8.13.5/Submit) id p6QIcxDT019831; Tue, 26 Jul 2011 11:38:59 -0700 (MST) (envelope-from owner-ietf-pop3ext@mail.imc.org)
X-Authentication-Warning: hoffman.proper.com: majordom set sender to owner-ietf-pop3ext@mail.imc.org using -f
Received: from wolverine01.qualcomm.com (wolverine01.qualcomm.com [199.106.114.254]) by hoffman.proper.com (8.14.4/8.14.3) with ESMTP id p6QIcwLw019826 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for <ietf-pop3ext@imc.org>; Tue, 26 Jul 2011 11:38:58 -0700 (MST) (envelope-from randy@qualcomm.com)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=qualcomm.com; i=randy@qualcomm.com; q=dns/txt; s=qcdkim; t=1311705554; x=1343241554; h=message-id:in-reply-to:references:x-mailer:date:to:from: subject:cc:mime-version:content-type:x-random-sig-tag: x-originating-ip; z=Message-ID:=20<p06240606ca54b881d2dd@[130.129.83.90]> |In-Reply-To:=20<4E2EBEC5.1000306@gmail.com>|References: =20<4E2E49AC.9090207@gmail.com>=20<4E2E7708.3080004@pscs. co.uk>=0D=0A=20<4E2E8762.5030805@gmail.com>=20<4E2E8E10.9 070209@pscs.co.uk>=0D=0A=20<4E2EBEC5.1000306@gmail.com> |X-Mailer:=20Eudora=20for=20Mac=20OS=20X|Date:=20Tue,=202 6=20Jul=202011=2011:36:29=20-0700|To:=20Mykyta=20Yevstife yev=20<evnikita2@gmail.com>,=20Paul=20Smith=20<paul@pscs. co.uk>|From:=20Randall=20Gellens=20<randy@qualcomm.com> |Subject:=20Re:=20POP=20handling=20commands=20given=20in =20wrong=20state|CC:=20<ietf-pop3ext@imc.org> |MIME-Version:=201.0|Content-Type:=20text/plain=3B=20char set=3D"us-ascii"=3B=20format=3Dflowed|X-Random-Sig-Tag: =201.0b28|X-Originating-IP:=20[172.30.39.5]; bh=gespxe5MJ8vdqVPXJNQP+WW2eNhSFnm6VGoxrUNCQhM=; b=LKJgjT2TLXdJ/uPM4hEuwjYD0D3OTipEVAI37OVkeyrnqRwABhXbVLe8 0Q4JcsNtzdv6GP4zeMTj1kq+hNebAZ5Bnuwv09win2uC6FyyqnMlWBwbo q2DuGT0O9Tt7KAYhJMuybUonoMAomVGCuWoNfm3uwZCEo4oJTn47bnliG 4=;
X-IronPort-AV: E=McAfee;i="5400,1158,6419"; a="106044791"
Received: from ironmsg04-r.qualcomm.com ([172.30.46.18]) by wolverine01.qualcomm.com with ESMTP; 26 Jul 2011 11:39:13 -0700
X-IronPort-AV: E=Sophos;i="4.67,269,1309762800"; d="scan'208";a="100341058"
Received: from nasanexhc08.na.qualcomm.com ([172.30.39.7]) by Ironmsg04-R.qualcomm.com with ESMTP/TLS/AES128-SHA; 26 Jul 2011 11:39:13 -0700
Received: from [130.129.83.90] (172.30.39.5) by qcmail1.qualcomm.com (172.30.39.7) with Microsoft SMTP Server (TLS) id 14.1.323.0; Tue, 26 Jul 2011 11:39:12 -0700
Message-ID: <p06240606ca54b881d2dd@[130.129.83.90]>
In-Reply-To: <4E2EBEC5.1000306@gmail.com>
References: <4E2E49AC.9090207@gmail.com> <4E2E7708.3080004@pscs.co.uk> <4E2E8762.5030805@gmail.com> <4E2E8E10.9070209@pscs.co.uk> <4E2EBEC5.1000306@gmail.com>
X-Mailer: Eudora for Mac OS X
Date: Tue, 26 Jul 2011 11:36:29 -0700
To: Mykyta Yevstifeyev <evnikita2@gmail.com>, Paul Smith <paul@pscs.co.uk>
From: Randall Gellens <randy@Qualcomm.Com>
Subject: Re: POP handling commands given in wrong state
CC: <ietf-pop3ext@imc.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
X-Random-Sig-Tag: 1.0b28
X-Originating-IP: [172.30.39.5]
Sender: owner-ietf-pop3ext@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pop3ext/mail-archive/>
List-ID: <ietf-pop3ext.imc.org>
List-Unsubscribe: <mailto:ietf-pop3ext-request@imc.org?body=unsubscribe>

At 4:19 PM +0300 7/26/11, Mykyta Yevstifeyev wrote:

>  The matter is that many POP servers support authentication using 
> X.509 certificate which was supplied during TLS negotiation and do 
> not require further authentication.  In such case issuing USER will 
> lead to -ERR, as the server is already in TRANSACTION then.

Could you use AUTH with SASL EXTERNAL for this case?  Seems a little 
cleaner.  Otherwise it's magic that you don't need AUTH/USER

>   Other servers implement POP-over-TLS so that further 
> authentication is also required (eg. Gmail, which I personally am 
> using).


-- 
Randall Gellens
Opinions are personal;    facts are suspect;    I speak for myself only
-------------- Randomly selected tag: ---------------
Reporter (to Mahatma Gandhi): Mr Gandhi, what do you think of
     Western Civilization?
Gandhi: I think it would be a good idea.