Hallam-Baker, Phillip wrote:
How could that be since STARTLS is hop-by-hop and not
end-to-end? This is comparing apples and oranges, isn't it?
No, end-to-end security is a bogus concept.
Sure it looks great in theory, but the cost of deploying all
those end user certificates is simply beyond most enterprises.
You could do end to end between MTAs via multiple hops as per RFC 3183.
But STARTTLS is *always* hop-to-hop between MTAs.
Yakov
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg