[19940] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Nonrepudiation - in some sense

daemon@ATHENA.MIT.EDU (Ben Laurie)
Sun Feb 12 19:22:16 2006

X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Sun, 12 Feb 2006 17:24:16 +0000
From: Ben Laurie <ben@algroup.co.uk>
To: cryptography@metzdowd.com
In-Reply-To: <20060210201910.GL21529@piias899.ms.com>

Victor Duchovni wrote:
> On Fri, Feb 10, 2006 at 07:49:59PM +0000, Ben Laurie wrote:
> 
>> Secondly, obviously, you can only decrypt SSL if you have the private
>> key, so presumably this is referring only to incoming SSL connections.
>>
> 
> And only if EDH (or more generally all PFS) ciphers are disabled. This
> is AFAIK common with HTTP servers, but the majority of TLS capable MTAs
> negotiate EDH ciphers.

You refer, of course, to the case where you are trying to decrypt a
sniffed conversation.

Gotta be careful with the trimming of messages!

-- 
http://www.links.org/

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[19940] in cryptography@c2.net mail archive

Re: Nonrepudiation - in some sense

daemon@ATHENA.MIT.EDU (Ben Laurie)Sun Feb 12 19:22:16 2006

daemon@ATHENA.MIT.EDU (Ben Laurie)
Sun Feb 12 19:22:16 2006