I've combined John Levine's ofmipd AUTH patch [1] with stuff from
Scott Gifford's UCSPI-TLS [2]. With these changes, ofmipd now supports
the use of TLS by means of the sslserver program from UCSPI-TLS.
The AUTH patch is fine, at least once you comment out a line that
pointlessly dup's fd1 onto fd2, but on FreeBSD 6.1, sslserver doesn't
work. It compiles fine, but the SSL or TLS handshake always fails. I
asked the guy who wrote sslserver and the answer boiled down to "dunno, it
worked the last time I tried it" so there is presumably some obscure
interface problem with openssl. I tried it with both 0.9.7 and 0.9.8,
equally broken.
On the other hand, the popular AUTH+TLS patch for netqmail works just
fine. Before I start cutting and pasting, anyone already adapted it from
qmail-smtpd to ofmipd? Tnx.
Regards,
John Levine, johnl@iecc.com, Primary Perpetrator of "The Internet for Dummies",
Information Superhighwayman wanna-be, http://johnlevine.com, Mayor
"I dropped the toothpaste", said Tom, crestfallenly.
|