Bug 676 - ldns-dane only allows plain ssl not start tls
ldns-dane only allows plain ssl not start tls
Product: ldns
Classification: Unclassified
Component: contributions
Other Linux
: P5 enhancement
Assigned To: LDNS dev team
Depends on:
  Show dependency treegraph
Reported: 2015-06-10 13:24 CEST by Björn Jacke
Modified: 2016-10-18 12:57 CEST (History)
1 user (show)

See Also:


Note You need to log in before you can comment on or make changes to this bug.
Description Björn Jacke 2015-06-10 13:24:24 CEST
something like

ldns-dane verify mail.example.com 25

doesn't work because ldns-dane wants to issue the start tls command and doesn't support start tls initiated TLS connections. It would be nice if ldns-dane would have an option to issue start tls optionally.
Comment 1 Willem Toorop 2016-10-18 12:57:32 CEST
This is a nice to have, but will not make the upcoming bugfix and trivial enhancements release.  I'll keep it open.