El día Saturday, November 16, 2013 a las 08:36:33PM -0500, Dave Thompson
escribió:
> > I was thinking more in a solution where the client reads the first 8
> > bytes from the socket and checks if the beginning of the GoodMorning
> > message is there in clear text (like "220 SLNP") and if not
> > it should handover this buffer and the socket fd for further SSL
> > handshake... Is this possible?
> >
> Note that the server cannot actually start SSL/TLS; the client does so,
> normally on its own initiative but possibly in response to a clear request.
> Once in SSL/TLS data phase the server can issue HelloRequest to request
> the client *re*negotiate, but 5246 explicitly says it SHOULD NOT do this for
>
> ...
Hi Dave,
Thanks for that hint; this solves what I'm aiming for and I tested it
already with a small C-written client: it just connects to the socket
and waits some seconds with read(2) if there is the clear text goodmorning
message coming in, if not it stops reading and initiates the SSL/TLS.
If it can read the "220 ready" in clear text, it will asume clear
text and will talk the first command to the server.
Vy 73
matthias
--
Sent from my FreeBSD netbook
Matthias Apitz, <g...@unixarea.de>, http://www.unixarea.de/ f: +49-170-4527211
UNIX since V7 on PDP-11, UNIX on mainframe since ESER 1055 (IBM /370)
UNIX on x86 since SVR4.2 UnixWare 2.1.2, FreeBSD since 2.2.5
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
