ietf-nntp TLS and AUTHINFO interaction
Russ Allbery
rra at stanford.edu
Mon Mar 17 14:12:23 PST 2003
Jeffrey M Vinocur <jeff at litech.org> writes:
> Except, um, one thing. Suppose the server does want to indicate
> encryption being required for some command, and the client has already
> authenticated. Can it send a 483 response? And if it does, is the
> client expected to know that since it has authenticated, it needs to
> disconnect, reconnect, negotiate TLS, and reauthenticate?
I think it can still send a 483 response in that case. Anyone object?
The client might try STARTTLS and then get an error (580 in this case, I
think?), and from that it should be able to draw the appropriate
conclusion.
--
Russ Allbery (rra at stanford.edu) <http://www.eyrie.org/~eagle/>
More information about the ietf-nntp
mailing list