ietf-smtp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-smtp] [OT] (signed TLDs)

2019-10-15 22:30:54
from [Hector Santos] [Permanent Link] 
On 10/15/2019 9:56 PM, Keith Moore wrote:

On 10/15/19 9:36 PM, Hector Santos wrote:


The technical security aspect of encryption is no longer good enough
-- certs now have to be CA-signed now.


Certs that weren't signed by a trusted party were never worth anything
anyway, unless maybe you manually pinned them.

Keith
Yes, 100% +1 but traditionally, it is a known target, i.e. well known users using a well-known trusted site. As long as the common name matches, it is secured. No? What I am seeing for the first time ever in HTTP history, HTTP comm I/O is ok, HTTPS is degraded by the ISP if self-signed. Explain that. They can't. Too classified. :-( 


--
HLS


_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-smtp] [OT] (signed TLDs), Viktor Dukhovni
Next by Date:  [ietf-smtp] HTTPS degrading (was: [OT] (signed TLDs)), Keith Moore
Previous by Thread:  Re: [ietf-smtp] [OT] (signed TLDs), John Levine
Next by Thread:  [ietf-smtp] HTTPS degrading (was: [OT] (signed TLDs)), Keith Moore
Indexes:  [Date] [Thread] [Top] [All Lists]