Re: Filezilla a security risk

To: debian-user@lists.debian.org
Subject: Re: Filezilla a security risk
From: Camaleón <noelamac@gmail.com>
Date: Sun, 8 Jul 2012 17:10:11 +0000 (UTC)
Message-id: <[🔎] jtcetj$s8h$17@dough.gmane.org>
References: <CA+AKB6E1FfRCNbV6PimAvdvUfoBKuo7rgLsbaCR_7tgtuZdw5A@mail.gmail.com> <jskgm9$68h$11@dough.gmane.org> <[🔎] 20120701190852.6ac28c32.celejar@gmail.com> <[🔎] 201207072127.38523.lisi.reisz@gmail.com> <[🔎] 20120708000433.372b2be0.celejar@gmail.com> <[🔎] 20120708085515.183aa860@bonifac.skk> <[🔎] jtbsnm$s8h$7@dough.gmane.org> <[🔎] 4FF99C27.5050509@list-post.mks-mail.de> <[🔎] jtc84a$s8h$10@dough.gmane.org> <[🔎] 4FF9BAAF.5060601@list-post.mks-mail.de>

On Sun, 08 Jul 2012 18:51:59 +0200, Markus Schönhaber wrote:

> 08.07.2012 17:14, Camaleón:
> 
>> On Sun, 08 Jul 2012 16:41:43 +0200, Markus Schönhaber wrote:
>> 
>>> 08.07.2012 13:59, Camaleón:
>>>
>>>> While imaps (tcp/993), pop3s (tcp/995) and smtps (tcp/587) make use
>>>> of
>>>
>>> smtps was defined as 465/tcp. 587/tcp is message submission which does
>>> not provide encryption on the transport layer.
>> 
>> They are used for the same purpose (secure smtp) but the former is now
>> depretacted.
> 
> For some definition of "purpose", maybe [1] Stating that 587/tcp was
> smtps is simply wrong, because it implies encryption on the network
> layer.

When you replace a standard with another it would be fair to say that 
both share the same essence and they are aimed to solve the same problem.

Moreover, the fact it can also use encryption is what makes it 
interesting because for non-encrypted communication there's already smtp 
(tcp/25) so the new standard (RFC 6409) can be seen as the succesor of 
the old smtps.

>> What I did not know is that the new standard can be used with or
>> without security (starttls) in the same port.
> 
> Which makes "the new standard" something very different.

To my eyes, not that different in the end.

> [1] For example: MUAs should connect to this port to send outgoing mail.

Greetings,

-- 
Camaleón

Reply to:

Follow-Ups:
- Re: Filezilla a security risk
  - From: Markus Schönhaber <debian-user@list-post.mks-mail.de>

References:
- Re: Filezilla a security risk
  - From: Celejar <celejar@gmail.com>
- Re: Filezilla a security risk
  - From: Lisi <lisi.reisz@gmail.com>
- Re: Filezilla a security risk
  - From: Celejar <celejar@gmail.com>
- Re: Filezilla a security risk
  - From: Slavko <linux@slavino.sk>
- Re: Filezilla a security risk
  - From: Camaleón <noelamac@gmail.com>
- Re: Filezilla a security risk
  - From: Markus Schönhaber <debian-user@list-post.mks-mail.de>
- Re: Filezilla a security risk
  - From: Camaleón <noelamac@gmail.com>
- Re: Filezilla a security risk
  - From: Markus Schönhaber <debian-user@list-post.mks-mail.de>

Prev by Date: Re: Filezilla a security risk
Next by Date: Alternate route for port 80
Previous by thread: Re: Filezilla a security risk
Next by thread: Re: Filezilla a security risk
Index(es):
- Date
- Thread