[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Gmail and SSL

Subject: Gmail and SSL
From: morrowc.lists at gmail.com (Christopher Morrow)
Date: Tue, 1 Jan 2013 11:18:38 -0500
In-reply-to: <[email protected]>
References: <CAAAwwbXrT=30++48N8UAas1DpcKWZ8dAe8fgWyeaB3zR00eJ9g@mail.gmail.com> <[email protected]> <CAAAwwbWXUNQKo24mHH+qyC=0uZYAzV3WqrpERg3dmCjCy0fEyg@mail.gmail.com> <[email protected]>

On Mon, Dec 31, 2012 at 9:07 AM, John R. Levine <johnl at iecc.com> wrote:
> Also keep in mind that this particular argument is about the certs used to
> submit mail to Gmail, which requires a separate SMTP AUTH within the SSL
> session before you can send any mail.  This isn't belt and suspenders, this
> is belt and a 1/16" inch piece of duct tape.

wait, no... this was gmail's pop crawlers gathering mail from remote
pop services wasn't it? (or that was my impression at least).

so this is, I think, an attempt by gmail/google to protect their users
from intermediaries presenting a certificate for 'floof' self-signed
instead of iecc.com ...

-chris

Prev by Date: GeekTools Whois Proxy and RIPE/RIPE-NCC
Next by Date: Gmail and SSL
Previous by thread: GeekTools Whois Proxy and RIPE/RIPE-NCC
Next by thread: Gmail and SSL
Index(es):
- Date
- Thread