[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: IETF opinion change on "implicit TLS" vs. StartTLS



On Mon, 2018-02-12 at 18:10 -0800, Quanah Gibson-Mount wrote:
> --On Tuesday, February 13, 2018 9:31 AM +1000 William Brown 
> <wibrown@redhat.com> wrote:
> 
> > On Mon, 2018-02-12 at 14:30 +0100, Michael Ströder wrote:
> > > HI!
> > > 
> > > To me this rationale for SMTP submission with implicit TLS seems
> > > also
> > > applicable to LDAPS vs. StartTLS:
> > > 
> > > https://tools.ietf.org/html/rfc8314#appendix-A
> > > 
> > > So LDAPS should not be considered deprecated. Rather it should be
> > > recommended and the _optional_ use of StartTLS should be strongly
> > > discouraged.
> > 
> > Yes, I strongly agree with this. I have evidence to this fact and
> > can
> > provide it if required,
> 
> Personally, I'm all for it.  I'd suggest using the above RFC as a
> template 
> for one formalizing port 636, so it's finally a documented standard.

Great! Where do we go from here to get this formalised properly? 

> 
> --Quanah
> 
> --
> 
> Quanah Gibson-Mount
> Product Architect
> Symas Corporation
> Packaged, certified, and supported LDAP solutions powered by
> OpenLDAP:
> <http://www.symas.com>
> 
-- 
Sincerely,

William Brown
Software Engineer
Red Hat, Australia/Brisbane