Subj : BINKP over TLS
To   : Alexey Fayans
From : Alan Ianson
Date : Tue Dec 17 2019 03:02 pm

Hello Alexey,

 AI>> I'm not going anywhere until I believe, in something. I don't
 AI>> mind having my beliefs proven to be worthless, in fact I
 AI>> appreciate it if they are in fact worthless.

 AF> Well, like I suggested earlier, you can read about STARTTLS on
 AF> wikipedia, where you will find confirmation of my words and more
 AF> examples of weakness mitigation, including DNS based (DANE) and
 AF> MTA-STS (lHSTS for SMTP).

I did read your reasons for using STARTTLS, and I agree with what you have said
 about it.

I don't think STARTTLS is what we want today. My thoughts are really
unimportant though, that is just what I see generally.

What is important is what the binkd development team thinks about TLS, STARTTLS
 or something all together different. That will determine where binkd goes if
it goes anywhere at all.

If you have ideas around security in binkd I would send them directly to one of
 the binkd developers. Alexey Vissarionov is someone active in Fidonet and is a
 binkd deveolper I think. That might be a good place to start.

 Ttyl :-),
         Al

--- GoldED+/LNX 1.1.5-b20180707
 * Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

.