Re: [OT] IANA ports (was: Filezilla a security risk)
On Sun, 08 Jul 2012 13:36:32 -0300, Henrique de Moraes Holschuh wrote:
> On Sun, 08 Jul 2012, Camaleón wrote:
>> SMTPS (and SMTP over SSL/TLS) is standarized as always has been, what
>
> Actually, at least on port 465, it is deprecated with prejudice as it
> has been assigned to something else.
Yes, but still needed under to cope with some corner circumstances (e.g.,
to support old MUAs).
>> happens is that it was updated to use starttls extension and the older
>> RFC was deprecated (but still used in some hosts).
>
> It is widely used because of some übercrappy MUAs[1] that screw up when
> told to do STARTTLS over port 587, AND because something-over-SSL is
> friendly to dumb[2] hardware TLS endpoint gateways, while STARTTLS is
> not (requires an application-level proxy running on the TLS gateway).
Yup, exactly ;-(
Greetings,
--
Camaleón
Reply to: