On Wed, 3 Aug 2022 13:34:02 +0200 (CEST), Sidsel Jensen via mailop
<mailop@mailop.org> wrote:
>We were having a discussion on the possibility to disable TLS 1.0 and 1.1 for
>MTA to MTA communication, and based on the numbers we've seen so far, it
>doesn't look that far fetched.
Our analysis states that the most likely point of interception of email
transactions by a hostile party is in the local network, where clients
communicate in the clear, for the most part, and configuration audit trails
are slim. Whether something foreign could be wiresharking your mail server is
a different discussion.
Large-scale MITM attacks present some interesting engineering problems, above
the doubtful ROI. Correspondents who must exchange information that should
not be disclosed to a third party already know how to avoid an inherently
insecure channel.
mdr
--
If you have a system set up where a single person can cause an
extinction level event, it's time to re-examine that system.
-- Florence (Freefall)
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
