			Things to do:

The UIDL code seems rather broken.  It's a nasty swamp.  Somebody who
actually uses it should fix it -- every time I try I seem to make
things worse....

POP3 can't presently distinguish a wedged or down server from an
authentication failure.  Possible fix: after issuing a PASS
command. wait 300 (xx) seconds for a "-ERR" or a "+OK" . If nothing
comes back, retry at the next poll event and generate no errors. If we
get an -ERR then log an authentication failure.

IMAP IDLE is flaky.  It should be reimplemented after careful study of 
RFC 2177.

SMTP authentication a la RFC 2554 ought to be supported, The Exim
reference has a whole chapter on the topic:
<http://www.exim.org/exim-html-3.10/doc/html/spec_33.html#SEC705>.

It has been reported that multidrop name matching fails when the
name to be matched contains a Latin-1 umlaut.  Dollars to doughnuts
this is some kind of character sign-extension problem. 

In the SSL support, we need to add server certificate validation (In
other words, does the certificate match the system we are trying to
contact?).  Also, add authentication of Certifying Authority (Is this
a Certifying Authority we recognize?).

Laszlo Vecsey writes: "I believe qmail uses a technique of writing
temporary files to nfs, and then moving them into place to ensure that
they're written. Actually a hardlink is made to the temporary file and
the destination name in a new directory, then the first one is
unlinked.. maybe a combination of this will help with the fetchmail
lock file."

Move everything to using service strings rather that port numbers, so we
can get rid of ENABLE_INET6 everywhere but in SockOpen (this will get
rid of the kluge in rcfile_y.y).

Fetchmail doesn't work with version 0.9.5a of OpenSSL. Apparently
fetchmail needs to do some kind or randomization-seed setting that
previous OpenSSL versions didn't require.

			Known bugs:

The Debian bug-tracking page for fetchmail is:

	http://cgi.debian.org/cgi-bin/pkgreport.cgi?archive=no&pkg=fetchmail

