John C Klensin wrote:
--On Thursday, 23 October, 2008 10:48 +0100 Alexey Melnikov
<alexey(_dot_)melnikov(_at_)isode(_dot_)com> wrote:
Matti Aarnio wrote:
On Thu, Oct 23, 2008 at 12:44:05AM -0700, Philip Guenther
wrote:
On Thu, 23 Oct 2008, Ivar Lumi wrote:
After reading RFC 3207, i found probably non documented
item.
...
Most cases of using TLS and server certificates on SMTP are
not getting even certificate CN quite right. Certificate
verification is purely black magic.
Yes, this could have been better documented.
Any chance that someone could get motivated to generate an I-D,
with these documentation weaknesses fixed, and move it toward
Draft Standard? Certainly there are a sufficient number of
interoperable implementations to meet that particular
requirement.
I was trying to encourage Paul Hoffman to update STARTTLS when I was
updating SMTP AUTH.
I think we might have a critical mass now.
I can certainly help to review changes. But I don't have much cycles to
[co-]edit a new document before Minneapolis.