Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields

ietf-822

Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15

2008-07-24 04:07:06


On Wed, 23 Jul 2008, Keith Moore wrote:

Tony Finch wrote:

Of course MUAs should just use the protocol's negotiation features to
auto-configure the most secure settings possible.


strongly disagree.  the problem is that when you try to negotiate the most
secure settings possible, you often create a way for the negotiation to be
dumbed down by an attacker to the least secure setting possible.


Not if you store the settings that you negotiated the first time
(ssh-style "leap of faith") and allow the user to check the stored
settings.

Tony.
-- 
f.anthony.n.finch  <dot(_at_)dotat(_dot_)at>  http://dotat.at/
FISHER GERMAN BIGHT: VARIABLE 3 OR 4 BECOMING EASTERLY 4 OR 5, OCCASIONALLY 6
LATER. SLIGHT OR MODERATE. FOG PATCHES. GOOD, OCCASIONALLY VERY POOR.

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, (continued) Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Lisa Dusseault Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Dave Crocker Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Michael Welzl Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Hector Santos Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Keith Moore Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Michael Welzl Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Tony Finch Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Hector Santos Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Keith Moore Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Keith Moore Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Tony Finch <= Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Keith Moore Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Tony Finch Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Keith Moore MUA auto-configuration, was Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Tony Finch Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Michael Welzl Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Charles Lindsey Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Jeff Macdonald Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Michael Welzl Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Hector Santos Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Michael Welzl

Previous by Date:	Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Keith Moore
Next by Date:	Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Michael Welzl
Previous by Thread:	Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Keith Moore
Next by Thread:	Re: Intent to revive "expires" header from draft-ietf-mailext-new-fields-15, Keith Moore
Indexes:	[Date] [Thread] [Top] [All Lists]