Re: IETF mail server and SSLv3

Viktor Dukhovni <ietf-dane@dukhovni.org> Thu, 25 February 2016 08:57 UTC

Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 9.2 \(3112\))
Subject: Re: IETF mail server and SSLv3
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
In-Reply-To: <20160225080725.822301A43E@ld9781.wdf.sap.corp>
Date: Thu, 25 Feb 2016 03:57:13 -0500
Content-Transfer-Encoding: 7bit
Message-Id: <B608EA62-EF66-4739-A0BF-42BA9B5FB307@dukhovni.org>
References: <20160225080725.822301A43E@ld9781.wdf.sap.corp>
To: ietf@ietf.org
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/ipOd0G5YCYADJpUVAdh98mPAVdg>
Precedence: list
Reply-To: ietf@ietf.org

> On Feb 25, 2016, at 3:07 AM, Martin Rex <mrex@sap.com> wrote:
> 
> I'm sorry, but this information is strange.
> 
> There exists *NO* downgrade vulnerability in TLS.
> 
> There is a well-known-stupid unprotected "downgrade dance" implemented
> in a few web browsers, but that is something entirely different, and
> not a property of TLS or SSLv3.
> 
> Btw. even SSLv3 still provides *ALL* the security properties officially
> documented for TLSv1.2 in rfc5246 Appendix F.
> 
> What SSLv3 does not provide, however, is additional protection against
> obvious abuses of the TLS protocol beyond its original security goals,
> such as by ^SSL VPNs and Web Browsers.  For authentication-less
> SMTP and programmatic clients, the original scope of TLS is sufficient,
> and therefore SSLv3 a perfectly sensible option.
> 
> Disabling SSLv3 can not possibly provide any security benefit here,
> but may cause interop problems and less security for a few old peers.

Would you then go further and say that SMTP servers should leave SSLv2
and/or EXPORT ciphers or single-DES enabled?  If not, why not?

-- 
	Viktor.

Re: IETF mail server and SSLv3 Lixia Zhang
Re: IETF mail server and SSLv3 John C Klensin
Re: IETF mail server and SSLv3 John Levine
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Phillip Hallam-Baker
IETF mail server and SSLv3 IETF Chair
Re: IETF mail server and SSLv3 tom p.
Re: IETF mail server and SSLv3 Phillip Hallam-Baker
Re: IETF mail server and SSLv3 Jari Arkko
Re: IETF mail server and SSLv3 Phillip Hallam-Baker
Re: IETF mail server and SSLv3 Jari Arkko
Re: IETF mail server and SSLv3 Derek Atkins
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 John C Klensin
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 ned+ietf
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 ned+ietf
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Phillip Hallam-Baker
Re: IETF mail server and SSLv3 ned+ietf
Re: IETF mail server and SSLv3 ned+ietf
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Phillip Hallam-Baker
Re: IETF mail server and SSLv3 John C Klensin
Re: IETF mail server and SSLv3 ned+ietf
Re: IETF mail server and SSLv3 ned+ietf
Re: IETF mail server and SSLv3 Lixia Zhang
Re: IETF mail server and SSLv3 John C Klensin
Re: IETF mail server and SSLv3 Martin Rex
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Solarus
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Solarus
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Martin Rex
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Russ Housley
Re: IETF mail server and SSLv3 Randy Bush
Re: IETF mail server and SSLv3 Stephen Farrell
Re: IETF mail server and SSLv3 Phillip Hallam-Baker
Re: IETF mail server and SSLv3 Viktor Dukhovni
Re: IETF mail server and SSLv3 Doug Barton
RE: IETF mail server and SSLv3 Christian Huitema