Gary [EMAIL PROTECTED] rašė:
Hi Vilius,
On Wed, 16 May 2007 00:47:05 +0300 UTC (5/15/2007, 4:47 PM -0500 UTC my
time), Vilius Šumskas wrote:
because TB! is the only client on the face of the planet which will not
allow you to accept an expired cert, you have to install Stunnel and
configure
On Tue, 15 May 2007 20:10:46 +0700 GMT, Thomas wrote:
snip
FB Is this a known problem?
Yes, it is. The New Filtering System (NFS), which is not so new
anymore, uses Windows handles in abundance, which is the problem.
There is no BT entry, because Ritlabs says it works as designed.
The
Hello Fredrik,
On Wed, 16 May 2007 08:33:46 +0200 GMT (16/05/2007, 13:33 +0700 GMT),
Fredrik Bergström wrote:
FB Great to know that I'm not the first to stumble upon this problem.
FB I switched my filters over to contains any of, but do now quite
FB understand what the separator should
Ok, now I get it. Turn down your coffee input or cut back on the sugar
:))) You are hyperactive for a while now :))
yikes. didn't intend to outperform ya, Vil'.
:)))
--
Vili
Current beta is 3.99.06 | 'Using TBBETA' information:
On Wed, May 16, 2007 at 07:51:38AM +0300 or thereabouts, vitalie vrabie wrote:
Gary wrote:
decisions if I want to accept a cert or not. Jumping through hoops to get to
an IMAP server, after you used Stunnel a few 1000 times, is just a pain -
unnecessary I might add. It is just easier to
On Wed, May 16, 2007 at 09:32:43AM +0300 or thereabouts, Vilius ??umskas wrote:
2. Here is where your above statement is flawed. In order to log in your
server, you have to AUTHENTICATE you must provide a password or in
combo
with CRAM-MD5 or some such, although it could be plain.
Hello Vilius,
On Wed, 16 May 2007 00:47:05 +0300 GMT (16/05/2007, 04:47 +0700 GMT),
Vilius Šumskas wrote:
because TB! is the only client on the face of the planet which will not
allow you to accept an expired cert, you have to install Stunnel and
configure it manually, then open up that
Hello Thomas,
Wednesday, May 16, 2007, 4:40:20 AM, you wrote:
V� Actually this is very good decision. Many users just don't read what's
V� written on every popup. They press YES YES YES.
While I don't use IMAP, this was the most ridiculous reply I've seen
on this list for a long while.
So,
They just want to send and recieve mail, it's our (admins) job to make
it work.
And thanks Ritlabs making this job easier!
Current beta is 3.99.06 | 'Using TBBETA' information:
http://www.silverstones.com/thebat/TBUDLInfo.html
They just want to send and recieve mail, it's our (admins) job to make
it work.
And thanks Ritlabs making this job easier!
Let me rephrase the discussion here: Ritlabs does a good job following
the rules, while other email clients are sloppy/let users follow
non-standard protocol (in
Thomas Fernandez wrote:
You have really insulted the intelligence of the TB users. If some are
stupid enough to click YES, that is *their* problem. Why on earth
would you forbid *me* to accept an expired certificate, if I so
choose?
treat it as an exam question: what is the difference
Hi Vitalie,
On Wed, 16 May 2007 20:59:13 +0300 UTC (5/16/2007, 12:59 PM -0500 UTC my
time), vitalie vrabie wrote:
You have really insulted the intelligence of the TB users. If some are
stupid enough to click YES, that is *their* problem. Why on earth
would you forbid *me* to accept an
Hello all,
Wednesday, May 16, 2007, Gary wrote:
B and D only allows me to send and receive packets securely. Since I still
can into the server by authentication using A and C, what difference does it
make?
Answer:NONE
so do You understand what is difference between
Hi Marek,
On Wed, 16 May 2007 21:01:35 +0200 UTC (5/16/2007, 2:01 PM -0500 UTC my
time), Marek Mikus wrote:
B and D only allows me to send and receive packets securely. Since I still
can into the server by authentication using A and C, what difference does it
make?
Answer:
Hello Vili,
Wednesday, May 16, 2007, 8:37:00 PM, you wrote:
They just want to send and recieve mail, it's our (admins) job to make
it work.
And thanks Ritlabs making this job easier!
Let me rephrase the discussion here: Ritlabs does a good job following
the rules, while other email
Hello Gary,
Wednesday, May 16, 2007, 10:24:48 PM, you wrote:
M BTW if B and D allows You secure packets *only*, why You need it?
ding, ding, ding. We have a winner here.. the answer is
You don't need it! and .. since you do not need it to get(POP) or see
(IMAP) your mail on
Hi Vilius,
On Wed, 16 May 2007 22:33:53 +0300 UTC (5/16/2007, 2:33 PM -0500 UTC my
time), Vilius Šumskas wrote:
You don't need it! and .. since you do not need it to get(POP) or see
(IMAP) your mail on the server, which can only be done with authentication
in the first place, the choice
Hello Gary,
Wednesday, May 16, 2007, 5:33:01 PM, you wrote:
4. Every other email client allows the user to choose whether he wishes
to accept a cert, any cert for IMAP. I'm a grown up guy, and I can make
my own decisions if I want to accept a cert or not. Jumping through
hoops to get to an
Hello Gary,
Wednesday, May 16, 2007, 10:43:37 PM, you wrote:
Hi Vilius,
On Wed, 16 May 2007 22:33:53 +0300 UTC (5/16/2007, 2:33 PM -0500 UTC my
time), Vilius Šumskas wrote:
You don't need it! and .. since you do not need it to get(POP) or see
(IMAP) your mail on the server, which can
Hi Vilius,
On Wed, 16 May 2007 22:45:36 +0300 UTC (5/16/2007, 2:45 PM -0500 UTC my
time), Vilius Šumskas wrote:
read up on DNS. Have you ever built DNS servers professionally, or
maintained at least one? Do you understand how it works. Have you ever
built email/IMAP/POP servers
Hello Gary,
Wednesday, May 16, 2007, 10:43:37 PM, you wrote:
It is a problem in TB! because TB! will not allow the user to accept a cert.
It makes that decision for him/her, and that answer is always no, you cannot
connect (if the cert is outdated)..
But it is very security sensitive
Hello Gary,
Wednesday, May 16, 2007, 11:04:55 PM, you wrote:
V You don't need to redirect user data for this. Simply own a
V server/router in between, create a certificate and make the server
V transparent.
Great, easily done, now how do you get my (or anyone's) password into your
fake IMAP
Hi Vilius,
On Wed, 16 May 2007 23:19:06 +0300 UTC (5/16/2007, 3:19 PM -0500 UTC my
time), Vilius Šumskas wrote:
V You don't. You will authentificate to your real server. But as my
V router/imap server will be transparent you will never know this.
V For example on Linux it is done like this:
V
Hello Gary,
Wednesday, May 16, 2007, 11:51:06 PM, you wrote:
V You don't. You will authentificate to your real server. But as my
V router/imap server will be transparent you will never know this.
V For example on Linux it is done like this:
V iptables -A PREROUTING -d myserveripfromvictimside
Hi Vilius,
On Wed, 16 May 2007 22:56:09 +0300 UTC (5/16/2007, 2:56 PM -0500 UTC my
time), Vilius Šumskas wrote:
To put it another way, if I can connect to a server via POP or IMAP, after I
authenticate, why will it not let me connect securely, when I can connect
normally. It should be my
Hello Gary,
Wednesday, May 16, 2007, 21:46:34, you wrote:
B and D only allows me to send and receive packets securely. Since I still
can into the server by authentication using A and C, what difference does it
make?
Answer:NONE
Confidentiality, integrity and availability
Hello Vilius,
Wednesday, May 16, 2007, 22:30:08, you wrote:
Yes they are not email clients, and yes they allow you to choose in a
difficult way. But I think you can see where it is coming. Sooner or later
none of them will allow this.
Nice news!
--
Best regards,
Maxim Masiutin
Hi Vilius,
On Wed, 16 May 2007 23:08:18 +0300 UTC (5/16/2007, 3:08 PM -0500 UTC my
time), Vilius Šumskas wrote:
V But it is very security sensitive decision. Let's say you are
V competent to make it, let's say I'm, most of IT guys are too.
agreed.
V But what about my mom, your little sister,
Hello Gary,
Wednesday, May 16, 2007, 22:43:37, you wrote:
It is a problem in that it is a matter of convenience to the user. Where the
user can always connect otherwise using a standard connection on 143 (in
most cases, depending if the IMAP server is set up that way, or standard POP
on 110).
I
Hello Gary,
Wednesday, May 16, 2007, 0:05:04, you wrote:
actual case, 8 years ago, I built an SMTP /IMAP / POP / DNS servers for a
business, about 15 people... no big deal... It is set up on 143 and 993...
now their own self-issued cert was made for 5 years... it has expired.
In this case, I
Hi Maxim,
On Thu, 17 May 2007 00:09:16 +0300 UTC (5/16/2007, 4:09 PM -0500 UTC my
time), Maxim Masiutin wrote:
M TLS assures confidentiality and integrity of the information.
M Confidentiality means that nobody in transit (that has access to the
M data channel) can read your messages while
Hi Maxim,
On Thu, 17 May 2007 00:13:07 +0300 UTC (5/16/2007, 4:13 PM -0500 UTC my
time), Maxim Masiutin wrote:
It is a problem in that it is a matter of convenience to the user. Where the
user can always connect otherwise using a standard connection on 143 (in
most cases, depending if the IMAP
Hi Vilius,
On Thu, 17 May 2007 00:01:31 +0300 UTC (5/16/2007, 4:01 PM -0500 UTC my
time), Vilius Šumskas wrote:
V You'll be suprised how many people send their banking passwords,
V social numbers and credit card information through email :)
hee, hee... no I would not :) also medical
33 matches
Mail list logo
