-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 6/6/13 6:40 AM, Matthew Wild wrote: > On 6 June 2013 10:21, Simon Tennant <si...@buddycloud.com> wrote: >> End to end encryption is a worth goal. This is very cool for >> getting information on the s2s connection. > > Perhaps on first sight. However this kind of usage is exactly why > the XEP died last time around. It isn't suitable for anything > except purely informational/debugging purposes. This is because the > link can change - it might be encrypted when you check it, and then > reconnect unencrypted without you knowing. Also, malicious entities > can always lie.
What I'd like is to know whether the connection from my personal IM server (stpeter.im) or my company's IM server (say, cisco.com) to a random server like prosody.im or jabber.ietf.org is encrypted. Sure, malicious entities can lie, but I try not to create accounts or authenticate with malicious servers. :-) Look, I need to have *some* level of trust in the server I authenticate with. I just want to know if the path from there to the next server is encrypted, too. If I'm a server admin presumably I have some kind of server-side tool I can use, but that's not the case if I'm not an admin. Peter - -- Peter Saint-Andre https://stpeter.im/ -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.19 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBAgAGBQJRuTFNAAoJEOoGpJErxa2pPXAP/1/q/PUY3k+xBxAgXRSlsbEt OHIcyX1NpFwePrRdKWrG50688MEO6+k5gYO4LCDmyxRmzkYES67gqQNxShpnDa2c +9T5ZUPSC95qTyN6PjfUlvGP8NXlqA8AGhx3oRBu0pnZYW33AnVh7WBoUuwOuG95 JqBLqPPP0D+7jsWbbiyVGQIye7vnQP4i+LRG/RpX/E3AXZbV2UIqAl/SuIaUWV6j i8wRBoXqga3ZmbOP17rmVDdTAqcWNGf8nhaTatfMqQI1oFkdAHWpvVJUam3p2NTk nhh4hy/raPSZQKOuaThoXCwdPc3M8R+/HtFHJwm60DUpeloJwW/vbxP0csx8Pyhl qESKMwy0x8jX2WAtSSa6vJO/GPm/kyrdaOzq+P31A0gzhn6wS2/mulUhk+fVtITD LIgAf02NM/6XQ8Bvclih2q/lO7TKqeHlbnhu6OZ0oGoht9cY3SNPswxig3gGQXVH PuViAPId2HvXTWQbqbBwx9HgSiEyJvmbJbbQ86CZUSOye2eJUvuXRVJciNDuyHZP utgEAKy7G+KXhi9RCz4s+so6yGnlOrRkVJtNky/gwaC5RKfZiHYlG7joLW7CMLMY FViPevdF8Aspz1kdz3N1dBKWD3BVDShNO64i2zwSXkqz9MvZjfMRB78c0FrAA3wa Gxgcl4tM5ECqIAeByI9Z =YoPO -----END PGP SIGNATURE-----
