ietf-asrg
[Top] [All Lists]

Re: [Asrg] Its all over for Challenge Response

2004-03-04 09:43:07
"Hallam-Baker, Phillip" <pbaker(_at_)verisign(_dot_)com> wrote:
STARTLS exists, is an approved standard and has been implemented in
Microsoft exchange along with pretty much every other mail server for 
years.

  Sure.  But how many MUAs implement SUBMIT?

Using SSH would require input. You have to know the other endpoint
supports SSH.

  If you're roaming, you can potentially use SSH (or SUBMIT +
STARTTLS) to submit messages to the MTA for your domain.
Functionally, they're the same thing.

  Where SSH got it right, and SUBMIT got it wrong, was that with SSH,
you just do port forwarding, and authentication is seperate from
SMTP.  So you don't need to change your SMTP clients to effectively
use a "SUBMIT + STARTTLS" work-alike.

The Web has peer to peer aspects, eliminating the central hub was 
what made the network hypertext model work. But look at Google and
you will see that the search model is not peer to peer. 

  Communication is peer to peer, discovery is not.  Most protocols
work this way.  Discovery through DNS, peer to peer via SMTP.

  Creating a trust system using that model should be relatively easy.

  Alan DeKok.

_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg