unofficial mirror of help-gnu-emacs@gnu.org
 help / color / mirror / Atom feed
* tls question
@ 2005-08-05 23:22 bxf4
  0 siblings, 0 replies; 6+ messages in thread
From: bxf4 @ 2005-08-05 23:22 UTC (permalink / raw)


Hello,

After many days of trying, I have authenticated smtp working with my
ISP's smtp servers, gnus, and smtpmail by using TLS via starttls.el.
My question is how can I tell if TLS is actually working?  My computer
issues the STARTTLS command, but I don't see any of the handshake,
etc. information that the starttls.el file shows.  Here's the relevant
part of my .emacs:

(setq starttls-gnutls-program "/usr/local/bin/gnutls-cli"
      starttls-program nil
      starttls-use-gnutls t
;; doesn't seem to help here, maybe need to somehow route output to another buffer?
;;      starttls-extra-arguments '("--debug" "1")
      smtpmail-starttls-credentials 
      '(("smtp.isp.com" 587 nil nil)))

As you can see, I tried to add the debug argument, but the smtp trace
did not look any different.  Please also note the final two nil
arguments to smtpmail-starttls-credentials.  I've seen this one the
web, but I don't understand how TLS will work with the key and
certificate.  Is that part of the problem?

Part of the trace follows.  Thank you for any input you may have.


220 smtp.isp.com ESMTP Sendmail 8.13.4+UW05.04/8.13.4+UW05.07; Fri, 5 Aug 2005 14:23:34 -0700

Process SMTP killed
EHLO dhcp.isp.com
250-smtp.isp.com Hello dhcp.isp.com [IP deleted], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-EXPN
250-VERB
250-8BITMIME
250-SIZE 60000000
250-AUTH GSSAPI
250-STARTTLS
250-DELIVERBY
250 HELP
STARTTLS
220 2.0.0 Ready to start TLS
EHLO dhcp.isp.com
250-smtp.isp.com Hello dhcp.isp.com [IP deleted], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING

[...]

050 >>> EHLO smtp.isp.com
050 250-mxout.isp.com Hello smtp.isp.com [IP deleted], pleased to meet you
050 250-ENHANCEDSTATUSCODES
050 250-PIPELINING
050 250-EXPN
050 250-VERB
050 250-8BITMIME
050 250-SIZE 60000000
050 250-ETRN
050 250-STARTTLS
050 250-DELIVERBY
050 250 HELP
050 >>> STARTTLS
050 220 2.0.0 Ready to start TLS
050 >>> EHLO smtp.isp.com

[...]

250 2.0.0 j75LNYdv029427 Message accepted for delivery
QUIT
221 2.0.0 smtp.isp.com closing connection
- Peer has closed the GNUTLS connection

^ permalink raw reply	[flat|nested] 6+ messages in thread
* tls question
@ 2005-08-05 23:25 bxf4
  0 siblings, 0 replies; 6+ messages in thread
From: bxf4 @ 2005-08-05 23:25 UTC (permalink / raw)


Hello,

After many days of trying, I have authenticated smtp working with my
ISP's smtp servers, gnus, and smtpmail by using TLS via starttls.el.
My question is how can I tell if TLS is actually working?  My computer
issues the STARTTLS command, but I don't see any of the handshake,
etc. information that the starttls.el file shows.  Here's the relevant
part of my .emacs:

(setq starttls-gnutls-program "/usr/local/bin/gnutls-cli"
      starttls-program nil
      starttls-use-gnutls t
;; doesn't seem to help here, maybe need to somehow route output to another buffer?
;;      starttls-extra-arguments '("--debug" "1")
      smtpmail-starttls-credentials 
      '(("smtp.isp.com" 587 nil nil)))

As you can see, I tried to add the debug argument, but the smtp trace
did not look any different.  Please also note the final two nil
arguments to smtpmail-starttls-credentials.  I've seen this one the
web, but I don't understand how TLS will work with the key and
certificate.  Is that part of the problem?

Part of the trace follows.  Thank you for any input you may have.


220 smtp.isp.com ESMTP Sendmail 8.13.4+UW05.04/8.13.4+UW05.07; Fri, 5 Aug 2005 14:23:34 -0700

Process SMTP killed
EHLO dhcp.isp.com
250-smtp.isp.com Hello dhcp.isp.com [IP deleted], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-EXPN
250-VERB
250-8BITMIME
250-SIZE 60000000
250-AUTH GSSAPI
250-STARTTLS
250-DELIVERBY
250 HELP
STARTTLS
220 2.0.0 Ready to start TLS
EHLO dhcp.isp.com
250-smtp.isp.com Hello dhcp.isp.com [IP deleted], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING

[...]

050 >>> EHLO smtp.isp.com
050 250-mxout.isp.com Hello smtp.isp.com [IP deleted], pleased to meet you
050 250-ENHANCEDSTATUSCODES
050 250-PIPELINING
050 250-EXPN
050 250-VERB
050 250-8BITMIME
050 250-SIZE 60000000
050 250-ETRN
050 250-STARTTLS
050 250-DELIVERBY
050 250 HELP
050 >>> STARTTLS
050 220 2.0.0 Ready to start TLS
050 >>> EHLO smtp.isp.com

[...]

250 2.0.0 j75LNYdv029427 Message accepted for delivery
QUIT
221 2.0.0 smtp.isp.com closing connection
- Peer has closed the GNUTLS connection

^ permalink raw reply	[flat|nested] 6+ messages in thread
* tls question
@ 2005-08-05 23:16 bxf4
  2005-08-06  0:24 ` Brian P. Flaherty
                   ` (2 more replies)
  0 siblings, 3 replies; 6+ messages in thread
From: bxf4 @ 2005-08-05 23:16 UTC (permalink / raw)


Hello,

After many days of trying, I have authenticated smtp working with my
ISP's smtp servers, gnus, and smtpmail by using TLS via starttls.el.
My question is how can I tell if TLS is actually working?  My computer
issues the STARTTLS command, but I don't see any of the handshake,
etc. information that the starttls.el file shows.  Here's the relevant
part of my .emacs:

(setq starttls-gnutls-program "/usr/local/bin/gnutls-cli"
      starttls-program nil
      starttls-use-gnutls t
;; doesn't seem to help here, maybe need to somehow route output to another buffer?
;;      starttls-extra-arguments '("--debug" "1")
      smtpmail-starttls-credentials 
      '(("smtp.isp.com" 587 nil nil)))

As you can see, I tried to add the debug argument, but the smtp trace
did not look any different.  Please also note the final two nil
arguments to smtpmail-starttls-credentials.  I've seen this one the
web, but I don't understand how TLS will work with the key and
certificate.  Is that part of the problem?

Part of the trace follows.  Thank you for any input you may have.


220 smtp.isp.com ESMTP Sendmail 8.13.4+UW05.04/8.13.4+UW05.07; Fri, 5 Aug 2005 14:23:34 -0700

Process SMTP killed
EHLO dhcp.isp.com
250-smtp.isp.com Hello dhcp.isp.com [IP deleted], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-EXPN
250-VERB
250-8BITMIME
250-SIZE 60000000
250-AUTH GSSAPI
250-STARTTLS
250-DELIVERBY
250 HELP
STARTTLS
220 2.0.0 Ready to start TLS
EHLO dhcp.isp.com
250-smtp.isp.com Hello dhcp.isp.com [IP deleted], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING

[...]

050 >>> EHLO smtp.isp.com
050 250-mxout.isp.com Hello smtp.isp.com [IP deleted], pleased to meet you
050 250-ENHANCEDSTATUSCODES
050 250-PIPELINING
050 250-EXPN
050 250-VERB
050 250-8BITMIME
050 250-SIZE 60000000
050 250-ETRN
050 250-STARTTLS
050 250-DELIVERBY
050 250 HELP
050 >>> STARTTLS
050 220 2.0.0 Ready to start TLS
050 >>> EHLO smtp.isp.com

[...]

250 2.0.0 j75LNYdv029427 Message accepted for delivery
QUIT
221 2.0.0 smtp.isp.com closing connection
- Peer has closed the GNUTLS connection

^ permalink raw reply	[flat|nested] 6+ messages in thread

end of thread, other threads:[~2005-08-26 15:29 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-08-05 23:22 tls question bxf4
  -- strict thread matches above, loose matches on Subject: below --
2005-08-05 23:25 bxf4
2005-08-05 23:16 bxf4
2005-08-06  0:24 ` Brian P. Flaherty
     [not found] ` <m2slxovutn.fsf-INHAs3gjgrFdBwumxGWZyk8mzxbseA6u8hQs7eYZtGL2fBVCVOL8/A@public.gmane.org>
2005-08-06 18:38   ` Jochen Küpper
     [not found] ` <mailman.2785.1123355327.20277.help-gnu-emacs@gnu.org>
2005-08-26 15:29   ` Brian P. Flaherty

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).