When adding SSL over an existing socket, we should wait for
the response close_notify packet before letting
folks use the underlying socket.

See section 7.2.1 of the rfc2246. It says:

   If the application protocol using TLS provides that any data may be
   carried over the underlying transport after the TLS connection is
   closed, the TLS implementation must receive the responding
   close_notify alert before indicating to the application layer that
   the TLS connection has ended.

I think we are in violation of this.

See attachments for some sample code (with hack workaround)

bradford.wetmore@eng 2001-01-12