Summary: | Failure to report lost packets dropping POP3 connections | ||
---|---|---|---|
Product: | [Frameworks and Libraries] kio | Reporter: | Casey Allen Shobe <cshobe> |
Component: | pop3 | Assignee: | kdepim bugs <kdepim-bugs> |
Status: | REPORTED --- | ||
Severity: | wishlist | ||
Priority: | NOR | ||
Version: | unspecified | ||
Target Milestone: | --- | ||
Platform: | Compiled Sources | ||
OS: | Linux | ||
Latest Commit: | Version Fixed In: |
Description
Casey Allen Shobe
2003-07-11 03:43:40 UTC
how can we know? when you just drop TCP packages, your connection is broken. This will need some ethereal log from you (taking your connection isn't encrypted) I'm sorry, but as I was fired from SecureWorks a while ago, I no longer have access to a test environment. However, I will ask if somebody there can send me an example dropped packet (though they probably won't because they're a very secretive bunch). I agree that the packet dropping approach is horrible for email (it causes several clients to hang, and the rest to give up on the POP3 connection at that point (so no new mail is delivered)), but the SecureWorks product is growing in popularity, and I fear that in time there will be more Kmail installations behind them. It works well for things like Code Red, but is way too invasive for email virii (especially considering it just matches extension, not content). But basically, whenever a POP3 connection is broken, regardless of the cause, there should be some sort of user notification, regardless of what the cause of the error might have been. If the connection is encrypted, then anything will pass right through the filter, including virii, unless the SSL traffic randomly triggers one of the thousands of rules as a false positive (another problem with their approach at security) :P. You can find some (limited) information at http://www.secureworks.com. Reassigning the bugs of the SMTP, IMAP and POP ioslaves to kdepim-bugs. Undo autoconfirm. Changing to wish. I don't see an easy way to detect dropped packets (at least not on the POP3-Level). Dropped packages should simply not happen. |