Re: [Exim] TLS (SSL) enabled = TLS (SSL) mandated???

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Jeffrey C. Ollie
Date:  
À: exim-users
Sujet: Re: [Exim] TLS (SSL) enabled = TLS (SSL) mandated???
On Fri, Oct 12, 2001 at 12:12:13AM -0400, Richard Welty wrote:
>
> really. from a security point of view, SMTP over TLS is fairly lame,
> for any number of reasons that are not easily dealt with. if it's
> that important to you, look at PGP or S/MIME solutions.


SMTP over TLS is VERY useful in situations where you can't use
CRAM-MD5 for authentication. Just because SMTP over TLS has
limitations doesn't mean it isn't useful, as long as you are aware of
the limitations.

Jeff