[Operators] [Fwd: Re: Secure Communications Week]
Peter Saint-Andre
stpeter at stpeter.im
Fri Aug 15 13:11:33 CDT 2008
Peter Saint-Andre wrote:
> Forwarding a message sent before I fixed a Mailman restriction...
>
>
> ---------- Forwarded message ----------
> From: Garrett Wollman <wollman at csail.mit.edu
> <mailto:wollman at csail.mit.edu>>
> To: XMPP Operators Group <operators at xmpp.org <mailto:operators at xmpp.org>>
> Date: Fri, 15 Aug 2008 13:18:11 -0400
> Subject: Re: [Operators] Secure Communications Week
> <<On Fri, 15 Aug 2008 07:59:06 -0600, Peter Saint-Andre
> <stpeter at stpeter.im <mailto:stpeter at stpeter.im>> said:
>
> > How about TLS with self-signed certs + server dialback? At least that
> > would give us channel encryption.
>
> That's no better than anonymous TLS (without certificates).
This is true. I have two questions:
1. Is TLS+Dialback better than Dialback without TLS?
2. How *should* we handle certificates that are self-signed, issued by
unknown CAs, etc.?
/psa
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7338 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.jabber.org/pipermail/operators/attachments/20080815/842dfe04/attachment.bin
More information about the Operators
mailing list