On 2024-11-22 at 07:09:06 UTC-0500 (Fri, 22 Nov 2024 13:09:06 +0100)
Matus UHLAR - fantomas via Postfix-users <[email protected]>
is rumored to have said:
IIUC, as CBC ciphers are unsafe,
What is your basis for understanding that, in regards to SMTP?
The HTTP-relevant attacks (e.g. BEAST) I am aware of on CBC ciphersuites
are infeasible against SMTP and similar protocols.
https://marc.info/?l=postfix-users&m=133649211220443&w=2
https://success.qualys.com/discussions/s/question/0D52L00004TntrHSAR/weak-cbc-mode-vulnerability-on-smtp&ved=2ahUKEwjV6r-IwfCJAxULj4kEHV_wJGUQFnoECC4QAQ&usg=AOvVaw3-avte1ZFDupDEI4r7shA1
https://blog.qualys.com/product-tech/2011/10/17/mitigating-the-beast-attack-on-tls#comment-8481
--
Bill Cole
[email protected] or [email protected]
(AKA @[email protected] and many *@billmail.scconsult.com
addresses)
Not Currently Available For Hire
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
