[176423] in North American Network Operators' Group
Re: Transparent hijacking of SMTP submission...
daemon@ATHENA.MIT.EDU (Jay Ashworth)
Thu Nov 27 21:55:44 2014
X-Original-To: nanog@nanog.org
Date: Thu, 27 Nov 2014 21:54:54 -0500 (EST)
From: Jay Ashworth <jra@baylink.com>
To: NANOG <nanog@nanog.org>
In-Reply-To: <CAP-guGUTqmQ02pCbES1Ckg3Wn_3X8wmuTvdcQ03Tk4wsjMpRKw@mail.gmail.com>
Errors-To: nanog-bounces@nanog.org
----- Original Message -----
> From: "William Herrin" <bill@herrin.us>
> I'm not sure I follow your complaint here. Are you saying that Comcast
> or a
> Comcast customer in Washington state stripped the STARTTLS verb from
> the
> IPv4 port 587 SMTP submission connection between you and a third
> party?
And, of course, *just* as I hit send, I remembered it was in RISKS, linking
to EFF:
https://www.eff.org/deeplinks/2014/11/starttls-downgrade-attacks
Note that's dated 11 November, so this is a couple weeks old now.
Cheers,
-- jra
--
Jay R. Ashworth Baylink jra@baylink.com
Designer The Things I Think RFC 2100
Ashworth & Associates http://www.bcp38.info 2000 Land Rover DII
St Petersburg FL USA BCP38: Ask For It By Name! +1 727 647 1274
