I am also interested in Opportunistic Encryption. Even if it is
not as secure as a manually configured VPN, I am willing to trade
that for what it does provide. I have looked at setting up
OpenSWAN in OE mode, but frankly it is daunting even for the
reasonably geeky and far beyond any kind
--
It seems to me opportunistic encryption has moved to
the application layer, at least as far as Internet
mail is concerned. Many MTAs use TLS automatically
with whatever certificates they can get. Of course,
this only guards against active attacks, but it
seems to me that this
The obvious solution to the phishing crisis is the widespread deployment
of SRP, but this does not seem to happening. SASL-SRP was recently
dropped. What is the problem?
-
The Cryptography Mailing List
Unsubscribe by sending
