Re: when should we esmtps our mxes?

To: debian-devel@lists.debian.org
Subject: Re: when should we esmtps our mxes?
From: Ivan Shmakov <ivan@siamics.net>
Date: Mon, 24 Oct 2016 15:15:46 +0000
Message-id: <[🔎] 878ttd4w2l.fsf@violet.siamics.net>
Mail-followup-to: never@bendel.debian.org
In-reply-to: <[🔎] 1477315507.24242.23.camel@decadent.org.uk> (Ben Hutchings's message of "Mon, 24 Oct 2016 14:25:07 +0100")
References: <[🔎] CAPgP4gxcptXTNcEFb5Jf+SkAYPWSuXwRVAoiqmABG_+gDCdGYw@mail.gmail.com> <[🔎] 20161024085921.rirykzuqhzopvhyo@bunk.spdns.de> <[🔎] CAPgP4gwDQEiFdzd4VHEoLSvX7vOOTGmAjQ5QF-=5FCxhW1sAJw@mail.gmail.com> <[🔎] 87h9823r8i.fsf_-_@violet.siamics.net> <[🔎] 20161024123312.bujfrskmzrg3bqat@belkar.wrar.name> <[🔎] 87d1ip52bw.fsf@violet.siamics.net> <[🔎] 1477315507.24242.23.camel@decadent.org.uk>

>>>>> Ben Hutchings <ben@decadent.org.uk> writes:

[…]

 > Those certificates look as expected.  Since TLS encryption of SMTP
 > between servers is opportunistic, there's no particular reason to use
 > a widely trusted CA for server certificates.  A MITM can just as
 > easily block STARTTLS as substitute their own key.

	That’s not necessarily any different to the HTTP(S) case.

	For instance, when the user first uses ‘example.com’ as the
	resource identifier, the Web user agent (usually) issues a GET
	request to the said host’s HTTP server in the plain.  At which
	point the server responds with a 302 redirect, pointing to the
	resource proper (say, https://example.com/.)

	That behavior is hardly any less opportunistic, and is prone to
	the very same attack, as demonstrated by ‘sslstrip’.

	Yet, I’d find that quite an uncommon reason to argue that we
	don’t need some widely trusted CAs for the HTTPS certificates.

	On the other hand, my MX setup relies on ‘exim4/relay_tls_dn’
	files that contain the list of CNs of the remotes the MTA
	permits relaying mail from (that is: acts as a smarthost for.)
	Hence, TLS becomes rather mandatory in this case.  (Although I
	have to admit that I don’t currently apply this approach in the
	“downstream” direction with any consistency.)

-- 
FSF associate member #7257  58F8 0F47 53F5 2EB2 F6A5  8916 3013 B6A0 230E 334A

Reply to:

Follow-Ups:
- Re: when should we esmtps our mxes?
  - From: Ben Hutchings <ben@decadent.org.uk>

References:
- Re: When should we https our mirrors?
  - From: Kristian Erik Hermansen <kristian.hermansen@gmail.com>
- Re: When should we https our mirrors?
  - From: Adrian Bunk <bunk@stusta.de>
- Re: When should we https our mirrors?
  - From: Kristian Erik Hermansen <kristian.hermansen@gmail.com>
- when should we esmtps our mxes?
  - From: Ivan Shmakov <ivan@siamics.net>
- Re: when should we esmtps our mxes?
  - From: Andrey Rahmatullin <wrar@debian.org>
- Re: when should we esmtps our mxes?
  - From: Ivan Shmakov <ivan@siamics.net>
- Re: when should we esmtps our mxes?
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Re: When should we https our mirrors?
Next by Date: Re: when should we esmtps our mxes?
Previous by thread: Re: when should we esmtps our mxes?
Next by thread: Re: when should we esmtps our mxes?
Index(es):
- Date
- Thread