[OT] IANA ports (was: Filezilla a security risk)
On Sun, 08 Jul 2012 16:36:20 +0200, Slavko wrote:
> Dňa Sun, 8 Jul 2012 11:59:50 +0000 (UTC) Camaleón <noelamac@gmail.com>
> napísal:
>
>> > By mi search, the standard is SMTP + STARTTLS and not SSL + SMTP.
>
>> There are different implementations, all of them standarized:
>>
>> While imaps (tcp/993), pop3s (tcp/995) and smtps (tcp/587) make use of
>> specific computer ports, imap, pop3 and smtp using "STARTTLS" keep the
>> same ports that their non-encrypted counterparts (143/110/25) to
>> transmit clear text credentials protected.
>
> if smtps is standardized, then why i see this:
>
> grep 587 /etc/services
> submission 587/tcp # Submission [RFC4409]
> submission 587/udp
>
> but:
>
> grep smtps /etc/services
> ssmtp 465/tcp smtps # SMTP over SSL
You can query for both in one line:
sm01@stt008:~$ grep -e 587 -e 465 /etc/services
submission 587/tcp # Submission [RFC4409]
submission 587/udp
ssmtp 465/tcp smtps # SMTP over SSL
What's what you don't like here? The old port could be still there for
legacy/backward compatibility issues.
> can you please tell me the RFC about SMTPS?
http://en.wikipedia.org/wiki/SMTPS
>> Well, when opening ports is not possible (consider a restricted
>> environment) or as Wikipedia¹ explains, independency and transparency
>> seen as a plus when using this extension.
>
> i know about differences both of the implementations.
Fine, but you asked.
Greetings,
--
Camaleón
Reply to: