[Operators] [Fwd: Re: Secure Communications Week]

Peter Saint-Andre stpeter at stpeter.im
Fri Aug 15 13:11:33 CDT 2008


Peter Saint-Andre wrote:
> Forwarding a message sent before I fixed a Mailman restriction...
> 
> 
> ---------- Forwarded message ----------
> From: Garrett Wollman <wollman at csail.mit.edu 
> <mailto:wollman at csail.mit.edu>>
> To: XMPP Operators Group <operators at xmpp.org <mailto:operators at xmpp.org>>
> Date: Fri, 15 Aug 2008 13:18:11 -0400
> Subject: Re: [Operators] Secure Communications Week
> <<On Fri, 15 Aug 2008 07:59:06 -0600, Peter Saint-Andre
> <stpeter at stpeter.im <mailto:stpeter at stpeter.im>> said:
> 
>  > How about TLS with self-signed certs + server dialback? At least that
>  > would give us channel encryption.
> 
> That's no better than anonymous TLS (without certificates).

This is true. I have two questions:

1. Is TLS+Dialback better than Dialback without TLS?

2. How *should* we handle certificates that are self-signed, issued by 
unknown CAs, etc.?

/psa

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7338 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.jabber.org/pipermail/operators/attachments/20080815/842dfe04/attachment.bin 


More information about the Operators mailing list