Re: TLS in Gopher

To: gopher-project@other.debian.org
Subject: Re: TLS in Gopher
From: "Iain R. Learmonth" <irl@fsfe.org>
Date: Thu, 1 Mar 2018 11:19:09 +0000
Message-id: <[🔎] 8a76c05f-1ca2-b5c4-9c21-cedad20e6bf1@fsfe.org>
In-reply-to: <[🔎] CAORWZRfAcc9fCiB7-Pzr2jtws0byJJ=b1ZSeH6gMehHSaX9UTA@mail.gmail.com>
References: <20180227184429.E928210539584@r-36.net> <201802280205.w1S25Dxb6684768@floodgap.com> <20180228201924.B5196105395B5@r-36.net> <[🔎] CAORWZRfAcc9fCiB7-Pzr2jtws0byJJ=b1ZSeH6gMehHSaX9UTA@mail.gmail.com>

Hi,

On 01/03/18 11:05, Alex Schröder wrote:
> Just to put a final nail into STARTTLS: https://tools.ietf.org/html/rfc8314
> is about email but the principle is the same.

The principle is *not* the same. For SMTP, the server sends data (the
banner) first as it can't know what the client is doing. For Gopher, the
client talks first and then the server can respond either using or not
using TLS based on what the client has sent.

STARTTLS was needed because the server would have already sent plaintext
to the client before it knew the client wanted TLS and would mess up the
handshake. This wouldn't happen for Gopher.

Thanks,
Iain.

Reply to:

References:
- Re: TLS in Gopher
  - From: Alex Schröder <kensanata@gmail.com>

Prev by Date: Re: TLS in Gopher
Next by Date: Re: TLS in Gopher
Previous by thread: Re: TLS in Gopher
Next by thread: Re: TLS in Gopher
Index(es):
- Date
- Thread