[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

draft-hoffman-smtp-tls: TLS vs STARTTLS

To: ietf-apps-tls@xxxxxxx, iesg@xxxxxxxx
Subject: draft-hoffman-smtp-tls: TLS vs STARTTLS
From: jgmyers@xxxxxxxxxxxx (John Myers)
Date: Wed, 27 May 1998 14:05:01 -0700
References: <>
Sender: owner-ietf-apps-tls@xxxxxxx

At the last IMC Mailconnect interoperability event, we found that
implementations of draft-hoffman-smtp-ssl-06.txt did not interoperate
with Exchange 5.5, which conforms to an earlier version of the draft. 
The changes to the draft were to fix a vulnerability to a
man-in-the-middle attack.

At the meeting, there was general consensus to fix this problem by
changing the name of the EHLO extension from "TLS" to "STARTTLS", so
that Exchange 5.5 and implementations of recent revisions of
draft-hoffman-smtp-ssl-06 do not try to negotiate TLS.

Assuming that consensus holds on the ietf-apps-tls mailing list, I would
like to request this change be made before the document is approved as a
Proposed Standard.

Follow-Ups:
- Re: draft-hoffman-smtp-tls: TLS vs STARTTLS
  - From: Paul Hoffman / IMC

References:
- Re: TLS vs STARTTLS
  - From: Jeff Stephenson

Prev by Date: Re: TLS vs STARTTLS
Next by Date: RE: draft-hoffman-smtp-tls: TLS vs STARTTLS
Previous by thread: Re: TLS vs STARTTLS
Next by thread: Re: draft-hoffman-smtp-tls: TLS vs STARTTLS
Index(es):
- Date
- Thread