On Oct 23, 2013, at 3:35 PM, Stephen Farrell <[email protected]> wrote:
> > > On 10/23/2013 08:09 PM, Jim Fenton wrote: >> On 10/23/13 11:28 AM, John-Mark Gurney wrote: >>> Is it just me, or is it funny that we are talking about securing the >>> inet, yet the ietf apparently doesn't do STARTTLS when sending email? >>> and hence the perpass email list is sent out unencrypted... >>> >>> Guess I'll drop a note to [email protected]. >>> >> It's not just you. IETF SHOULD be using STARTTLS for email, not >> particularly for this or other mailing lists (where attackers could just >> read the archives, anyway) but because it's the Right Thing To Do. > > That was discussed in the DANE meeting in Berlin and > there's a plan for eating our own dogfood, but I'm > not sure where its at. Will check. Yup. We reached out to the folk who run the mail servers for the IETF (AMS). The servers that are currently handling mail are (or, were when I chatted with them) older boxes, running older versions of Linux (and, presumably older MTA). AMS was in the process of deploying shiny new boxes, with new OS, etc. I'm suspecting that the plans might have gotten delayed a bit. Once the newer boxes are up the plan (from what I understand) was to migrate over to them, and then enable STARTTLS. After that we were planning on doing DANE. W > > S. > >> >> -Jim >> _______________________________________________ >> perpass mailing list >> [email protected] >> https://www.ietf.org/mailman/listinfo/perpass >> > _______________________________________________ > perpass mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/perpass > -- What our ancestors would really be thinking, if they were alive today, is: "Why is it so dark in here?" -- (Terry Pratchett, Pyramids) _______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
