You are viewing a plain text version of this content. The canonical link for it is here.
Posted to server-dev@james.apache.org by se...@james.apache.org on 2004/07/16 07:18:41 UTC

[jira] Commented: (JAMES-304) secure remote delivery opportunistically or even allow make TLS mandatory

The following comment has been added to this issue:

     Author: Ralf Hauser
    Created: Thu, 15 Jul 2004 10:18 PM
       Body:
at least from what I understand in
package org.apache.james.transport.mailets;
RemoteDelivery.deliver() doesn't appear to react on a 
STARTTLS offered by the receiving server so far
with its javax.mail.Transport.connect() and 
javax.mail.Transport.sendMessage(message, addr);

at least also http://www.carfield.com.hk/java_store/j2ee/j2sdkee1.3.1-src/javamail/src/share/classes/javax/mail/Transport.java
and http://www.carfield.com.hk/java_store/j2ee/j2sdkee1.3.1-src/javamail/src/share/classes/com/sun/mail/smtp/SMTPTransport.java

don't appear to address it either
---------------------------------------------------------------------
View this comment:
  http://issues.apache.org/jira/browse/JAMES-304?page=comments#action_36708

---------------------------------------------------------------------
View the issue:
  http://issues.apache.org/jira/browse/JAMES-304

Here is an overview of the issue:
---------------------------------------------------------------------
        Key: JAMES-304
    Summary: secure remote delivery opportunistically or even allow make TLS mandatory
       Type: Improvement

     Status: Unassigned
   Priority: Major

    Project: James
 Components: 
             Remote Delivery
   Versions:
             2.1.3

   Assignee: 
   Reporter: Ralf Hauser

    Created: Tue, 13 Jul 2004 8:11 PM
    Updated: Thu, 15 Jul 2004 10:18 PM
Environment: all - I use RH Linux 9

Description:
It would be great to have james at least opportunistically attempt to secure its user's outgoing mails with STARTTLS.

How would one do this?
1) first a delivery-host must be found that can do this:
   --> see http://tlstest.sf.net
   The ch/zhwin/tlstest/TLSTestAPI.java.canDomainTLS() can do this (in v1.2)
2) The real delivery still needs to be secured - unfortunately, so far, I only see a broken idea how to do this in http://www.portaljava.com/home/modules.php?name=Forums&file=viewtopic&p=20492
anybody with better ideas (especially since there, they mess a lot with system-wide properties, so I am afraid that afterwards, the secure pop and smtp to MUA will no longer work)


---------------------------------------------------------------------
JIRA INFORMATION:
This message is automatically generated by JIRA.

If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa

If you want more information on JIRA, or have a bug to report see:
   http://www.atlassian.com/software/jira


---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org