Re: TLS in Gopher

To: Christoph Lohmann <20h@r-36.net>
Cc: gopher-project@other.debian.org
Subject: Re: TLS in Gopher
From: Kim Holviala <kimholviala@fastmail.com>
Date: Wed, 28 Feb 2018 09:55:23 +0200
Message-id: <[🔎] F965B7EC-C5AA-4183-A197-3A8B2B46B3C9@fastmail.com>
In-reply-to: <[🔎] 20180227184429.E928210539584@r-36.net>
References: <[🔎] 20180227184429.E928210539584@r-36.net>

On 27 Feb 2018, at 20.08, Christoph Lohmann <20h@r-36.net> wrote:
> 
> Ideal way:
> 
>    C->S: STARTTLS\r\n
>    S->C: <TLS begins on both sides>
>    C->S(in TLS): selector[\tsearch]\r\n
>    S->C(in TLS): answer

Starttls is nice but requires gopher servers to be complied with OpenSSL or similar and will not work with inetd-based servers (because TLS would need to be initialized from scratch for each connection). So it will conpletely kill any simplicity gopher might have had. Dedicated TLS port (7443?) would work with TLS wrappers leaving the gopher server itself simple and the codebase understandable.

But I'm not going to veto STARTTLS either because yes, it does solve many problems.

- Kim

Reply to:

Follow-Ups:
- Re: TLS in Gopher
  - From: "Iain R. Learmonth" <irl@fsfe.org>

References:
- TLS in Gopher
  - From: Christoph Lohmann <20h@r-36.net>

Prev by Date: Re: TLS in Gopher
Next by Date: Re: TLS in Gopher
Previous by thread: Re: TLS in Gopher
Next by thread: Re: TLS in Gopher
Index(es):
- Date
- Thread