STARTTLS sockets shouldn't send v2 hello messages

VERIFIED FIXED

Status

Core Graveyard
Security: UI
VERIFIED FIXED
17 years ago
a year ago

People

(Reporter: John G. Myers, Assigned: John G. Myers)

Tracking

1.0 Branch

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment)

(Assignee)

Description

17 years ago
STARTTLS style protocols, such as SMTP, have never had SSL2-only servers.  
TLS-stepup sockets should disable SSL2 v2-compatible helo messages (and SSL2).
(Assignee)

Comment 1

17 years ago
Created attachment 30481 [details] [diff] [review]
Proposed fix.  Also renames useTLS to forTLSStepUp

Comment 2

17 years ago
r=javi, since PSM 2.0 gets built by default on nightly builds and I'm not sure
if it's enabled on any of the tinderboxes, please build on at least Linux and
windows before checking in.

Actually, we probably need sr= now as well.
sr=brendan@mozilla.org
(Assignee)

Comment 4

17 years ago
Fix checked in.
 
Status: NEW → RESOLVED
Last Resolved: 17 years ago
Resolution: --- → FIXED

Comment 5

17 years ago
Verified per jgmyers' comments.
Status: RESOLVED → VERIFIED

Updated

13 years ago
Component: Security: UI → Security: UI
Product: PSM → Core

Updated

9 years ago
Version: psm2.0 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.