ietf-smtp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Last Call: SMTP Service Extension for Secure SMTP over TLS to Proposed Standard

2001-07-09 08:08:44
from [Eric Rescorla] [Permanent Link] 


I guess I'm of the opinion that such knowledge must be explicitly configured 
if MTAs are going to fail if it is not accurate - MTAs should not be making 
guesses.

Disallowing this sort of caching makes autodiscovery a losing strategy
in any environment which includes active attack as part of its threat
model. I suspect that we'll have to suck that up but we should do
so conscious of the tradeoff.

-Ekr
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Last Call: SMTP Service Extension for Secure SMTP over TLS to Proposed Standard, Keith Moore
Next by Date:  Re: SMTP Service Extension for Priority, Eric Allman
Previous by Thread:  Re: Last Call: SMTP Service Extension for Secure SMTP over TLS to Proposed Standard, Keith Moore
Next by Thread:  Re: Last Call: SMTP Service Extension for Secure SMTP over TLS to Proposed Standard, Bodo Moeller
Indexes:  [Date] [Thread] [Top] [All Lists]