Re: tlsa for smtp to <at> bugs.debian.org

To: debian-devel@lists.debian.org
Subject: Re: tlsa for smtp to <at> bugs.debian.org
From: Russ Allbery <rra@debian.org>
Date: Tue, 17 Sep 2013 09:08:19 -0700
Message-id: <[🔎] 87ioxzmnws.fsf@windlord.stanford.edu>
In-reply-to: <[🔎] loom.20130917T145055-846@post.gmane.org> (Thorsten Glaser's message of "Tue, 17 Sep 2013 12:55:25 +0000 (UTC)")
References: <[🔎] m3hadq7v5s.fsf@carbon.jhcloos.org> <[🔎] m3bo3y5zno.fsf@carbon.jhcloos.org> <[🔎] 87txhq8s9s.fsf@qurzaw.varnish-software.com> <[🔎] 20130913102803.GB31162@bongo.bofh.it> <[🔎] m3hado4zos.fsf@carbon.jhcloos.org> <[🔎] 20130913205106.GA7721@roeckx.be> <[🔎] 20130913212338.GB24058@mail.waldi.eu.org> <[🔎] 87hadnogsp.fsf@mid.deneb.enyo.de> <[🔎] 21044.14689.807723.67001@chiark.greenend.org.uk> <[🔎] loom.20130917T145055-846@post.gmane.org>

Thorsten Glaser <tg@mirbsd.de> writes:

> Only if it provides secrecy.

> If one of the communication partners (say, the client, because it’s on a
> mobile) uses a guessable secret (say, due to lack of entropy), the
> session is lost.

I think that statement is somewhat too absolute.  There are levels of
protection that you can get, and guessable secrets still require someone
do the work of guessing.  Even if you're using a straight pseudorandom
number generator, the attacker still has to do some non-trivial work.

If you, specifically, are a target of a government agency, that probably
isn't going to help.  However, if you're just interested in avoiding
getting sucked into the casual dragnet, it helps quite a bit, since it
puts the complexity of an attack over the value of your data.

Schneier made this point recently and it's worth repeating: security isn't
about making your data perfectly secure.  Security is about increasing the
cost of getting at your data to more than your data is worth to the
attacker.  While strong security is obviously better since it's easier to
satisfy that requirement, weaker security is not worthless.

That said, your suggestions for making the security stronger are certainly
welcome, and that's always what we should strive for.  I just wanted to
make a minor point here about not letting the best be the enemy of the
good.  While we're working on something better, it's still worthwhile to
deploy the tools we have.

-- 
Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to:

References:
- tlsa for smtp to @bugs.debian.org
  - From: James Cloos <cloos@jhcloos.com>
- Re: tlsa for smtp to @bugs.debian.org
  - From: James Cloos <cloos@jhcloos.com>
- Re: tlsa for smtp to @bugs.debian.org
  - From: Tollef Fog Heen <tfheen@err.no>
- Re: tlsa for smtp to @bugs.debian.org
  - From: md@Linux.IT (Marco d'Itri)
- Re: tlsa for smtp to @bugs.debian.org
  - From: James Cloos <cloos@jhcloos.com>
- Re: tlsa for smtp to @bugs.debian.org
  - From: Kurt Roeckx <kurt@roeckx.be>
- Re: tlsa for smtp to @bugs.debian.org
  - From: Bastian Blank <waldi@debian.org>
- Re: tlsa for smtp to @bugs.debian.org
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: tlsa for smtp to @bugs.debian.org
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>
- Re: tlsa for smtp to <at> bugs.debian.org
  - From: Thorsten Glaser <tg@mirbsd.de>

Prev by Date: Re: Status of dgit (good for NMUs and fast-forwarding Debian branches)
Next by Date: Re: Status of dgit (good for NMUs and fast-forwarding Debian branches)
Previous by thread: Re: tlsa for smtp to <at> bugs.debian.org
Next by thread: Re: tlsa for smtp to @bugs.debian.org
Index(es):
- Date
- Thread