Re: [Exim] server-side management of public keys?

Pàgina inicial
Aquest missatge és part del següent fil:
M\l'arbre de fils complet ordenat per data
MMKurt Lieber en <-
MMSuresh Ramasubramanian en ->
Delete this message
Reply to this message
Autor: Kurt Lieber
Data:  
A: exim-users
Assumpte: Re: [Exim] server-side management of public keys?
Kurt Lieber said:
> OK, but we're talking about encrypting messages with people's public
> keys, so I don't see how an unauthenticated client could increase risk.
> Again, I'm talking about managing *public* keys server-side. I never
> said anything about private keys.

After I sent this message, I realized you were talking about digitally
signing of messages sent by internal people, where I was referring
primarily to encrypting messages destined to external recipients. I agree
that you absolutely need to have some strong authentication in place if
you start digitally signing outgoing messages, though I still think this
can be effectively managed server-side, when combined with the necessary
precautions like SMTP/TLS.

Anyway, just thought I'd clarify.

--kurt




Aquest missatge es va enviar a les següents llistes de correu:
Exim-users
Informació sobre la llista de correu | Missatges propers		<-Re: [Exim] server-side management of public keys?Re: [Exim] server-side management of public keys?->
Tahini and Hummus and Cumin Development Archives administrat per cumin AdminsLurker (versió 2.3)