ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: IAB policy on anti-spam mechanisms?

2003-03-11 12:34:00
from [Eric Rescorla] [Permanent Link] 
ietf1(_at_)ietf(_dot_)org writes:

It did teach me the importance of protecting against the
man-in-the-middle attack. This is not often done, at least not by
default, in many STARTTLS implementations.


Indeed. The problem is that it's pretty hard to determine
a priori what certificate the peer server ought to be offering,
due to mail relaying and MX records.

-Ekr

-- 
[Eric Rescorla                                   ekr(_at_)rtfm(_dot_)com]
                http://www.rtfm.com/
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: beauty of freedom, Melinda Shore
Next by Date:  RE: Last Call: Fast Reroute Extensions to RSVP-TE for LSP Tunnels to Proposed Standard, Ping Pan
Previous by Thread:  Re: IAB policy on anti-spam mechanisms?, Vernon Schryver
Next by Thread:  Re: IAB policy on anti-spam mechanisms?, Lawrence Greenfield
Indexes:  [Date] [Thread] [Top] [All Lists]