[113838] in cryptography@c2.net mail archive
Re: SSL/TLS and port 587
daemon@ATHENA.MIT.EDU (Florian Weimer)
Wed Jan 23 08:07:11 2008
To: Ed Gerck <edgerck@nma.com>
Cc: Cryptography <cryptography@metzdowd.com>
From: Florian Weimer <fweimer@bfk.de>
Date: Wed, 23 Jan 2008 09:29:07 +0100
In-Reply-To: <47963820.7060802@nma.com> (Ed Gerck's message of "Tue, 22 Jan 2008 10:38:24 -0800")
* Ed Gerck:
> The often expressed idea that SSL/TLS and port 587 are somehow able
> to prevent warrantless wiretapping and so on, or protect any private
> communications, is IMO simply not supported by facts.
Huh? Have you got a source for that? This is he first time I've
heard of such claims.
Message submission over 587/TCP gives the receiver more leeway
regarding adjusting message contents to police (add a message ID,
check the Date and From headers, and so on). The abuse management
contract is also different: once you accept a message over 587/TCP,
it's your fault (and your fault alone) if this message turns out to be
spam. There's nothing related to confidentiality that I know of.
--=20
Florian Weimer <fweimer@bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstra=DFe 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
