Re: Filezilla a security risk

To: debian-user@lists.debian.org
Subject: Re: Filezilla a security risk
From: Markus Schönhaber <debian-user@list-post.mks-mail.de>
Date: Sun, 08 Jul 2012 19:48:44 +0200
Message-id: <[🔎] 4FF9C7FC.1000404@list-post.mks-mail.de>
Reply-to: debian-user@lists.debian.org
In-reply-to: <[🔎] jtcetj$s8h$17@dough.gmane.org>
References: <CA+AKB6E1FfRCNbV6PimAvdvUfoBKuo7rgLsbaCR_7tgtuZdw5A@mail.gmail.com> <jskgm9$68h$11@dough.gmane.org> <[🔎] 20120701190852.6ac28c32.celejar@gmail.com> <[🔎] 201207072127.38523.lisi.reisz@gmail.com> <[🔎] 20120708000433.372b2be0.celejar@gmail.com> <[🔎] 20120708085515.183aa860@bonifac.skk> <[🔎] jtbsnm$s8h$7@dough.gmane.org> <[🔎] 4FF99C27.5050509@list-post.mks-mail.de> <[🔎] jtc84a$s8h$10@dough.gmane.org> <[🔎] 4FF9BAAF.5060601@list-post.mks-mail.de> <[🔎] jtcetj$s8h$17@dough.gmane.org>

08.07.2012 19:10, Camaleón:

> On Sun, 08 Jul 2012 18:51:59 +0200, Markus Schönhaber wrote:
> 
>> 08.07.2012 17:14, Camaleón:
>>
>>> On Sun, 08 Jul 2012 16:41:43 +0200, Markus Schönhaber wrote:
>>>
>>>> 08.07.2012 13:59, Camaleón:
>>>>
>>>>> While imaps (tcp/993), pop3s (tcp/995) and smtps (tcp/587) make use
>>>>> of
>>>>
>>>> smtps was defined as 465/tcp. 587/tcp is message submission which does
>>>> not provide encryption on the transport layer.
>>>
>>> They are used for the same purpose (secure smtp) but the former is now
>>> depretacted.
>>
>> For some definition of "purpose", maybe [1] Stating that 587/tcp was
>> smtps is simply wrong, because it implies encryption on the network
>> layer.
> 
> When you replace a standard with another it would be fair to say that 
> both share the same essence and they are aimed to solve the same problem.

That doesn't change the fact that one is encrypted on the network layer
while the other is not.
Especially - in contrast to what your statement implied - 587/tcp is not
encrypted on the network layer.

>> Which makes "the new standard" something very different.
> 
> To my eyes, not that different in the end.

Yeah.
Your statement that 587/tcp was smtps is simply wrong. I just corrected
your wrong statement - nothing more. Why you feel the need to go to a
great length to convince someone (whoever that might be) that your wrong
statement was somehow right is completely beyond me.

-- 
Regards
  mks

Reply to:

Follow-Ups:
- [OT] Long threads, Was: Re: Filezilla a security risk
  - From: rjc <rjc@linuxstuff.pl>
- Re: Filezilla a security risk
  - From: Camaleón <noelamac@gmail.com>

References:
- Re: Filezilla a security risk
  - From: Celejar <celejar@gmail.com>
- Re: Filezilla a security risk
  - From: Lisi <lisi.reisz@gmail.com>
- Re: Filezilla a security risk
  - From: Celejar <celejar@gmail.com>
- Re: Filezilla a security risk
  - From: Slavko <linux@slavino.sk>
- Re: Filezilla a security risk
  - From: Camaleón <noelamac@gmail.com>
- Re: Filezilla a security risk
  - From: Markus Schönhaber <debian-user@list-post.mks-mail.de>
- Re: Filezilla a security risk
  - From: Camaleón <noelamac@gmail.com>
- Re: Filezilla a security risk
  - From: Markus Schönhaber <debian-user@list-post.mks-mail.de>
- Re: Filezilla a security risk
  - From: Camaleón <noelamac@gmail.com>

Prev by Date: Alternate route for port 80
Next by Date: Re: [OT] IANA ports (was: Filezilla a security risk)
Previous by thread: Re: Filezilla a security risk
Next by thread: [OT] Long threads, Was: Re: Filezilla a security risk
Index(es):
- Date
- Thread