From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/71764 Path: news.gmane.org!not-for-mail From: James Cloos Newsgroups: gmane.emacs.gnus.general Subject: Re: STARTTLS support Date: Sat, 25 Sep 2010 16:15:45 -0400 Message-ID: References: <87ocbo4e4c.fsf@gmail.com> <87mxr7z8hp.fsf@gmail.com> <844odf5ap0.fsf@davestoy.home> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: dough.gmane.org 1285446327 29356 80.91.229.12 (25 Sep 2010 20:25:27 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Sat, 25 Sep 2010 20:25:27 +0000 (UTC) To: ding@gnus.org Original-X-From: ding-owner+M20137@lists.math.uh.edu Sat Sep 25 22:25:26 2010 Return-path: Envelope-to: ding-account@gmane.org Original-Received: from util0.math.uh.edu ([129.7.128.18]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1OzbJF-0008Di-Ue for ding-account@gmane.org; Sat, 25 Sep 2010 22:25:26 +0200 Original-Received: from localhost ([127.0.0.1] helo=lists.math.uh.edu) by util0.math.uh.edu with smtp (Exim 4.63) (envelope-from ) id 1OzbJ2-00006J-QM; Sat, 25 Sep 2010 15:25:12 -0500 Original-Received: from mx1.math.uh.edu ([129.7.128.32]) by util0.math.uh.edu with esmtps (TLSv1:AES256-SHA:256) (Exim 4.63) (envelope-from ) id 1OzbJ1-000064-87 for ding@lists.math.uh.edu; Sat, 25 Sep 2010 15:25:11 -0500 Original-Received: from quimby.gnus.org ([80.91.231.51]) by mx1.math.uh.edu with esmtp (Exim 4.72) (envelope-from ) id 1OzbIw-0005TS-UI for ding@lists.math.uh.edu; Sat, 25 Sep 2010 15:25:11 -0500 Original-Received: from eagle.jhcloos.com ([207.210.242.212]) by quimby.gnus.org with esmtp (Exim 3.36 #1 (Debian)) id 1OzbIw-00016h-00 for ; Sat, 25 Sep 2010 22:25:06 +0200 Original-Received: by eagle.jhcloos.com (Postfix, from userid 10) id DAD5D40153; Sat, 25 Sep 2010 20:24:34 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jhcloos.com; s=eagle; t=1285446298; bh=BeGEURsllmUxS2j8y4uFRIEUf8C5LFp2zBS20BG7JTo=; h=From:To:Subject:In-Reply-To:References:Date:Message-ID: MIME-Version:Content-Type; b=vn3UFiiSQKSXxOdVR4hkJrIovhK7ae06RGjybLotaCTrrUi2DFsCa2NpetxmqPk9W 6kvQ8ypmhcDSCI19+lkMy2T1xOx61LFMc+ET4eOxxYTnzr/0s3WVpr/fgEroPSY0vn gmGRcK6P+2yRchYvUfDnnaKzppbzUjJ2elqZ/6M4= Original-Received: from carbon (localhost [127.0.0.1]) by carbon.jhcloos.org (Postfix) with ESMTP id 101EF1D8482 for ; Sat, 25 Sep 2010 20:15:46 +0000 (UTC) In-Reply-To: (Lars Magne Ingebrigtsen's message of "Sat, 25 Sep 2010 21:24:01 +0200") User-Agent: Gnus/5.110011 (No Gnus v0.11) Emacs/24.0.50 (gnu/linux) Face: iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAABHNCSVQICAgIfAhkiAAAAI1J REFUOE+lU9ESgCAIg64P1y+ngUdxhl5H8wFbbM0OmUiEhKkCYaZThXCo6KE5sCbA1DDX3genvO4d eBQgEMaM5qy6uWk4SfBYfdu9jvBN9nSVDOKRtwb+I3epboOsOX5pZbJNsBJFvmQQ05YMfieIBnYX FK2N6dOawd97r/e8RjkTLzmMsiVgrAoEugtviCM3v2WzjgAAAABJRU5ErkJggg== Copyright: Copyright 2009 James Cloos OpenPGP: ED7DAEA6; url=http://jhcloos.com/public_key/0xED7DAEA6.asc OpenPGP-Fingerprint: E9E9 F828 61A4 6EA9 0F2B 63E7 997A 9F17 ED7D AEA6 Original-Lines: 17 X-Hashcash: 1:30:100925:ding@gnus.org::theeXt/k1h4jc+hj:000TvOw/ X-Spam-Score: -2.0 (--) List-ID: Precedence: bulk Xref: news.gmane.org gmane.emacs.gnus.general:71764 Archived-At: >>>>> "LMI" == Lars Magne Ingebrigtsen writes: LMI> Isn't STARTTLS just a hack to provide encryption without having to LMI> open more ports in the firewall, sort of? >From the security perspective, having to use a separate port for TLS is considered the hack. It is better to have a single port. And, when the starttls command is issued first, nothing which goes over the wire before TLS starts gives away any more info than the TLS handshake itself. -JimC -- James Cloos OpenPGP: 1024D/ED7DAEA6