[19929] in cryptography@c2.net mail archive
Re: Nonrepudiation - in some sense
daemon@ATHENA.MIT.EDU (Victor Duchovni)
Fri Feb 10 15:21:33 2006
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Fri, 10 Feb 2006 15:19:10 -0500
From: Victor Duchovni <Victor.Duchovni@MorganStanley.com>
To: cryptography@metzdowd.com
Mail-Followup-To: cryptography@metzdowd.com
In-Reply-To: <43ECEE67.7000700@algroup.co.uk>
On Fri, Feb 10, 2006 at 07:49:59PM +0000, Ben Laurie wrote:
> Secondly, obviously, you can only decrypt SSL if you have the private
> key, so presumably this is referring only to incoming SSL connections.
>
And only if EDH (or more generally all PFS) ciphers are disabled. This
is AFAIK common with HTTP servers, but the majority of TLS capable MTAs
negotiate EDH ciphers.
--
/"\ ASCII RIBBON NOTICE: If received in error,
\ / CAMPAIGN Victor Duchovni please destroy and notify
X AGAINST IT Security, sender. Sender does not waive
/ \ HTML MAIL Morgan Stanley confidentiality or privilege,
and use is prohibited.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
