Peter Saint-Andre wrote:
Forwarding a message sent before I fixed a Mailman restriction...---------- Forwarded message ----------From: Garrett Wollman <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>>To: XMPP Operators Group <[email protected] <mailto:[email protected]>> Date: Fri, 15 Aug 2008 13:18:11 -0400 Subject: Re: [Operators] Secure Communications Week <<On Fri, 15 Aug 2008 07:59:06 -0600, Peter Saint-Andre <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> said: > How about TLS with self-signed certs + server dialback? At least that > would give us channel encryption. That's no better than anonymous TLS (without certificates).
This is true. I have two questions: 1. Is TLS+Dialback better than Dialback without TLS?2. How *should* we handle certificates that are self-signed, issued by unknown CAs, etc.?
/psa
smime.p7s
Description: S/MIME Cryptographic Signature
