docs/diploma

diff thesis/tex/4-MasqmailsFuture.tex @ 366:80b2e476c2e3

find changesets by author, revision, files, or words in the commit message
a lot of cleanup
author meillo@marmaro.de
date Fri, 30 Jan 2009 21:20:00 +0100
parents f26d63dbb22b
children d51894e48762
line diff
     1.1 --- a/thesis/tex/4-MasqmailsFuture.tex	Wed Jan 28 16:49:45 2009 +0100
     1.2 +++ b/thesis/tex/4-MasqmailsFuture.tex	Fri Jan 30 21:20:00 2009 +0100
     1.3 @@ -141,9 +141,9 @@
     1.4  	\label{fig:stunnel}
     1.5  \end{figure}
     1.6  
     1.7 -To provide encrypted incoming channels, the \MTA\ could implement encryption and listen on a port that is dedicated to encrypted \SMTP\ (\NAME{SMTPS}). This approach would be possible, but it is deprecated in favor for \NAME{STARTTLS}. \RFC3207 ``\SMTP\ Service Extension for Secure \SMTP\ over Transport Layer Security'' shows this by not mentioning \NAME{SMTPS} on port 465. Also port 465 is not even reserved for \NAME{SMTPS} anymore \citeweb{iana:port-numbers}.
     1.8 +To provide encrypted incoming channels, the \MTA\ could implement encryption and listen on a port that is dedicated to encrypted \SMTP\ (\NAME{SMTPS}). This approach would be possible, but it is deprecated in favor for \NAME{STARTTLS}. \RFC\,3207 ``\SMTP\ Service Extension for Secure \SMTP\ over Transport Layer Security'' shows this by not mentioning \NAME{SMTPS} on port 465. Also port 465 is not even reserved for \NAME{SMTPS} anymore \citeweb{iana:port-numbers}.
     1.9  
    1.10 -\NAME{STARTTLS}---defined in \RFC2487---is what \RFC3207 recommends to use for secure \SMTP. The connection then goes over port 25 (or the submission port 587), but gets encrypted as the \NAME{STARTTLS} keyword is issued. Email depends on compatibility---only encryption methods that client and server support can be used. Hence it is best to act after the recommendations of the \RFC\ documents. This means \NAME{STARTTLS} encryption should be supported for incoming and for outgoing connections.
    1.11 +\NAME{STARTTLS}---defined in \RFC\,2487---is what \RFC\,3207 recommends to use for secure \SMTP. The connection then goes over port 25 (or the submission port 587), but gets encrypted as the \NAME{STARTTLS} keyword is issued. Email depends on compatibility---only encryption methods that client and server support can be used. Hence it is best to act after the recommendations of the \RFC\ documents. This means \NAME{STARTTLS} encryption should be supported for incoming and for outgoing connections.
    1.12  
    1.13  
    1.14