[BlueOnyx:17903] Re: Logjam, Openssl and Email Deliverability

[Michael Stauber]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Carl,

> I suspect the list saw the CC and did not send you another copy.

Yeah, that's probably the case.

> A reply from google on mailop confirms that "we expect to in the
> near future" refuse to deliver mail to systems that:
> 
> 1) advertise starttls in response to ehlo, and 2) have a 512 bit DH
> key?
> 
> No indication on a time frame for that, other than "near future".

The sooner the better. :p

> Actually refuse to send mail to them - you can probably receive
> mail from them.

That might depend on what kind of mailserver that is. I didn't dig too
deep, but the log entries I've had (where inbound messages were
rejected due to DH parameters being too short) just tried over and
over and got the same error message each time. Of course that might
not be representative.

- -- 
With best regards

Michael Stauber
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBAgAGBQJVjdxCAAoJEJX96NYlHnf3wx4H/RScM/yBsTiH3Z5ayqMexlY/
MOu+p6H98mYGGMDHQ8QvJH4EWw2tN8+4TUDJfH1CZ9hBXlRevMAear/8WOVONv+a
i7efqEpR/Gd/RGk2iF96H3HVCPLeI+gJmHVxZv73ai3RoBAbfFi0grPSnL5lwBbW
MgI3zjo7SgYv5DkX7AalB81L8NmfvTbivelaM5ZaCRA0dKJrsnw2Xy3jXBeMW5Yb
M4yUp8pb5d8CfZdLapu9Jja12T6Lol53mnWEBslWokD3y8huq9FcqaPpAtNLhlWd
H6z/BRhdm+tVkvwhLHoMBIvSsR5/ZoLiuVlhqDCqK3bR/TiU2BIQLwlrdBB7+eE=
=mHVz
-----END PGP SIGNATURE-----