Skip to Content [alt-c]
In reply to STARTTLS Considered Harmful
thanks. Very interesting. One question: how can a client protect itself against a TLS downgrade attack? How can it tell the difference between an SMTP server that has TLS but with a man in the middle and an SMTP server with no TLS?
Reply
Your comment will be public. To contact me privately, email me. Please keep your comment polite, on-topic, and comprehensible. Your comment may be held for moderation before being published.
Your Name: (Optional; will be published)
Your Email Address: (Optional; will not be published)
Your Website: (Optional; will be published)
>
monospaced
Post a Reply
Your comment will be public. To contact me privately, email me. Please keep your comment polite, on-topic, and comprehensible. Your comment may be held for moderation before being published.