Am 02.04.2011 23:17, schrieb Jeroen Geilman:

> I see Mr Reindl is butting his big mouth in again

is your toilet broken or why is your neck so big?

> I "should" do nothing.

YOU can do waht you want, but do not recommend others wrong things

> If the OP is running normal SMTP on port 25, then TLS is an added complexity, 
> and one he is apparently not
> sufficiently prepared for; so if he can avoid it, I would advise him to do so.

YOU would, but who are you to suggest others "disable encryption is ok"?

> Because the primary value of TLS on a mail client is to be able to send 
> encrypted 
> login information, and prevent sniffing on local LAN networks

*lol*

you know about cram-md5 / digest-md5
this is for login-information

> The majority of the internet is not sending encrypted mail between MTAs

bullshit, you are not the majority

Untrusted TLS connection established to mx2.t-systems.at
Untrusted TLS connection established to gmail-smtp-in.l.google.com
Untrusted TLS connection established to mx04.brts.barracuda.com
Untrusted TLS connection established to mailw.lix.aon.at
Untrusted TLS connection established to mx1.nokia.com
Untrusted TLS connection established to mx.sil.at
Untrusted TLS connection established to mx.inode.at

> I can only repeat that your preposterous "SHOULD" demands are silly.
> Guaranteed end-to-end encryption is not a job for the MTA.
> Use PGP or GPG to achieve message confidentiality.

you were the who spoke about "the majority"?
the majority is not using GPG!

but the majority is using TLS for smtp(pop3/imap if they have
a smater sysadmin like you!

> ..but that's utter bullshit, since you yourself said that encryption is 
> worthless unless 
> ALL hops use it. Now you're saying "oh, it's okay if they don't, but try 
> to minimize them" ?
> 
> Make up your mind

shut up if you have no idea about the topic

again:
NOBODY needs TLS for auth, this is done by auth-mechanisms

if you provide TLS tou your clients you suggest that messages are encrypted
and they are if you have configured your server right and the customer sends
a message to gmail, but if you are too stupid the answer with the quoted
information come back unecnrypted

Attachment: signature.asc
Description: OpenPGP digital signature

Reply via email to