[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Filezilla a security risk


Dňa Sun, 8 Jul 2012 11:59:50 +0000 (UTC) Camaleón <noelamac@gmail.com>

> > By mi search, the standard is SMTP + STARTTLS and not SSL + SMTP.

> There are different implementations, all of them standarized:
> While imaps (tcp/993), pop3s (tcp/995) and smtps (tcp/587) make use of 
> specific computer ports, imap, pop3 and smtp using "STARTTLS" keep the 
> same ports that their non-encrypted counterparts (143/110/25) to
> transmit clear text credentials protected.

if smtps is standardized, then why i see this:

grep 587 /etc/services 
submission	587/tcp				# Submission [RFC4409]
submission	587/udp


grep smtps /etc/services 
ssmtp		465/tcp		smtps		# SMTP over SSL

can you please tell me the RFC about SMTPS?

> Well, when opening ports is not possible (consider a restricted 
> environment) or as Wikipedia¹ explains, independency and transparency 
> seen as a plus when using this extension.

i know about differences both of the implementations.



Attachment: signature.asc
Description: PGP signature

Reply to: