Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: sniffing plaintext protocols
From: Tonnerre Lombard <tonnerre.lombard () sygroup ch>
Date: Tue, 15 Aug 2006 08:59:41 +0200

Salut,

On Sat, 2006-08-12 at 00:57 +0200, Joachim Schipper wrote:
Well pgp does address another area compared to TLS or pop3s. On the
other hand I agree to combine both!

Only if you configure your MUA not to downgrade to plain SMTP when TLS
is not available, and so on - there isn't too much point otherwise.

In fact, every MTA which is between you and your communication partner
must be configured not to downgrade to plain SMTP. Which most of them
just do.

                                Tonnerre
-- 
SyGroup GmbH
Tonnerre Lombard

Loesungen mit System
Tel:+41 61 333 80 33    Roeschenzerstrasse 9
Fax:+41 61 383 14 67    4153 Reinach BL
Web:www.sygroup.ch      tonnerre.lombard () sygroup ch

Attachment: signature.asc
Description: This is a digitally signed message part


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault