How do (SSL + MTA + pop-client) fit together?

Discussion in 'Linux Networking' started by no.top.post, May 6, 2015.

  1. no.top.post

    no.top.post Guest

    Considering the original RFC spec. which is easily testable by telnet,
    one step at a time. From memory [correct me where I'm wrong] it's:

    = contact sever: IP & port = an MTA action
    and negotiate <User & Password>.
    = send <show me my dir> [STAT ? LIST IIRC]
    = send <send me entry #N>
    = send <delete entry #M>
    = send <BYE>

    For the mail-client that I patched to add Tx-authorisation, the
    MTA part was simply called from the mail-client in a 2-instruction:
    Send(TextS); Receive(TextR) sequence; which you can simulate/test
    manually by telnet.

    Apparently SSL would be called by MTA?
    But does the SSL initial-dialogue need to be catered for in the
    client? Apparently not. That's the whole idea of 'layering': MTA
    is a layer between the client and SSL.

    When I did [in a terminal]:
    openssl s_client -host smtp.gmail.com -port 587 -starttls smtp
    I got some 80 lines, including <Server certificate>.
    Is this Server certificate handled automatically by `openssl` on
    my side?

    With the old system, where you could manually test each step, you
    knew what has happeneing. With increased hidden complexity, you
    lose control, and get-screwed-behind-your-back.

    I want to add SSL to a known/proven client+MTA, to escape the
    restricted web-access to gmail.
    Using a browser, I can't see how to do eg.:
    * fetch mail-3
    * fetch mail-7
    * fetch mail-6
    * copy-paste from mail-6 to mail-3 and edit mail-3
    * send-as-reply mail-3
    all on one screen, i.e. without changing workspaces.

    If you've got the diagrams and the descriptions on different
    pages of the book, it becomes difficult?
     
    no.top.post, May 6, 2015
    #1
    1. Advertisements

  2. no.top.post

    Bill Marcum Guest

    Most known/proven mail clients/MTAs probably already support
    SSL. You may have to specify the port number for SSL+POP or
    SSL+IMAP (993 or 995). I use Thunderbird for gmail and Yahoo
    mail, but I've also used mutt.
     
    Bill Marcum, May 6, 2015
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.