Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email pr

ietf-smtp

Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols

2013-10-26 06:00:24

On 25/10/2013 19:30, Brandon Long wrote:

Given that you can only trust the last Received header, I'm not clearwhat is accomplished.

Maybe not much, but this is a similar issue to the one a 'mandatory TLS'spec has - if you don't trust an MTA, you just don't trust it, period.

If A sends a message to B, if you know it only goes through trustedMTAs, then a header saying 'this message was sent over TLS' can be trusted

If you don't know if it only goes through trusted MTAs, then it doesn'tmatter whether it was sent over TLS or not, the message has potentiallybeen compromised (unless it has end-to-end encryption).


-

Paul Smith Computer Services
Tel: 01484 855800
Vat No: GB 685 6987 53
_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, (continued) Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Paul Smith Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Stephan Bosch Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Rolf E. Sonneveld Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Ned Freed Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, John Levine Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Wei Chuang Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Brandon Long Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Wei Chuang Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Ned Freed Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Dave Crocker Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Paul Smith <= Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Wei Chuang Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Wei Chuang Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Keith Moore Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, John Levine [ietf-smtp] Review of draft-moore-email-tls-00.txt, Alexey Melnikov Re: [ietf-smtp] Review of draft-moore-email-tls-00.txt, Keith Moore

Previous by Date:	Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Dave Crocker
Next by Date:	[ietf-smtp] Review of draft-moore-email-tls-00.txt, Alexey Melnikov
Previous by Thread:	Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Dave Crocker
Next by Thread:	Re: [ietf-smtp] Two recent Internet-Drafts about using TLS with email protocols, Wei Chuang
Indexes:	[Date] [Thread] [Top] [All Lists]