Re: [OT] IANA ports (was: Filezilla a security risk)
On Sun, 08 Jul 2012, Camaleón wrote:
> SMTPS (and SMTP over SSL/TLS) is standarized as always has been, what
Actually, at least on port 465, it is deprecated with prejudice as it has
been assigned to something else.
> happens is that it was updated to use starttls extension and the older
> RFC was deprecated (but still used in some hosts).
It is widely used because of some übercrappy MUAs[1] that screw up when told
to do STARTTLS over port 587, AND because something-over-SSL is friendly to
dumb[2] hardware TLS endpoint gateways, while STARTTLS is not (requires an
application-level proxy running on the TLS gateway).
[1] this mostly includes old versions of certain extremely widely used MS
Windows MUAs.
[2] as in cheaper and much faster, "dumb" isn't a bad thing in this context
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
Reply to: