Re: Gopher over TLS

To: Emil Engler <me@emilengler.com>
Cc: gopher-project@other.debian.org
Subject: Re: Gopher over TLS
From: Sebastiaan Deckers <sebdeckers83@gmail.com>
Date: Sat, 14 Mar 2020 13:35:40 -0500
Message-id: <[🔎] CADVGGb-w4Q8EyHtikBUG135KA=mUbL=S+ZTNBhr4Z3uhL4Mkwg@mail.gmail.com>
In-reply-to: <[🔎] f2faa4a5-749a-8e99-f24f-fad3dd9d8e77@emilengler.com>
References: <[🔎] f2faa4a5-749a-8e99-f24f-fad3dd9d8e77@emilengler.com>

FWIW, I drafted a spec of Gopher over TLS. Published the server and client libraries and deployed them in production.

https://gitlab.com/commonshost/goth#gopher-over-tls-got-protocol

TL;DR

- Dual-stack negotiation of plaintext and TLS on port 70/tcp

- Use TLSv1.2 or greater for security.

- Use TLSv1.3 for 0RTT to minimise the performance loss.

- Require SNI for virtual hosting.

- Require ALPN=gopher for future compatibility.

On Sat, Mar 14, 2020 at 6:36 AM Emil Engler <me@emilengler.com> wrote:

Hi, I thought about writing a standard for a secure Gopher protocol
(short gophers).
Have there been any proposals for this yet and what's the general
consensus about this on this ML

Cheers,
Emil

Reply to:

References:
- Gopher over TLS
  - From: Emil Engler <me@emilengler.com>

Prev by Date: Re: Gopher over TLS
Next by Date: Re: Gopher over TLS
Previous by thread: Re: Gopher over TLS
Next by thread: Re: Gopher over TLS
Index(es):
- Date
- Thread