[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor server for port 443

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor server for port 443
From: Dominik Schaefer <schaedpq2@xxxxxx>
Date: Wed, 21 May 2008 15:40:30 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Wed, 21 May 2008 09:40:55 -0400
In-reply-to: <48337928.8070004@xxxxxxxxx>
References: <7a013f2b0805190131k3ed4f4aclb155751f739f1138@xxxxxxxxxxxxxx> <48337928.8070004@xxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.12 (Macintosh/20080213)

F. Fox schrieb:

In addition to port 443, you might consider ports like 995 - used
for secure POP3 - and 587, used for secure SMTP on Gmail.

I just want to add, that the preferred way for encrypted POP3, IMAP,ACAP and maybe SMTP is to use the (old) standard port and issue aSTARTTLS or STLS to switch to an encrypted communication:

http://tools.ietf.org/html/rfc2595#section-7
http://tools.ietf.org/html/rfc3207

The RFCs "discourage" the use of separate ports for pop3s and imaps,reasons are given the RFC2595.


There is even something similar to STARTTLS for HTTP:
http://tools.ietf.org/html/rfc2817

So, please keep in mind: connections to ports 80, 25, 587, 110 andothers _may_ be encrypted as well (while 443, 995 may also just use acrippled cipher suite and may be not efficiently encrypted after all).Port numbers are just a poor choice to decide upon kind andcircumstances (secure / non-secure) of traffic. ;-)


Regards,
Dominik

References:
- Tor server for port 443
  - From: Grant Heller
- Re: Tor server for port 443
  - From: F. Fox

Prev by Author: Re: a serious TOR adversary?
Next by Author: unsubscribe
Previous by thread: Re: Tor server for port 443
Next by thread: a serious TOR adversary?
Index(es):
- Author
- Thread