Hello Alexey,

 AI>> I'm not going anywhere until I believe, in something. I don't
 AI>> mind having my beliefs proven to be worthless, in fact I
 AI>> appreciate it if they are in fact worthless.

 AF> Well, like I suggested earlier, you can read about STARTTLS on
 AF> wikipedia, where you will find confirmation of my words and more
 AF> examples of weakness mitigation, including DNS based (DANE) and
 AF> MTA-STS (lHSTS for SMTP).

I did read your reasons for using STARTTLS, and I agree with what you have said
about it.

I don't think STARTTLS is what we want today. My thoughts are really
unimportant though, that is just what I see generally.

What is important is what the binkd development team thinks about TLS, STARTTLS
or something all together different. That will determine where binkd goes if it
goes anywhere at all.

If you have ideas around security in binkd I would send them directly to one of
the binkd developers. Alexey Vissarionov is someone active in Fidonet and is a
binkd deveolper I think. That might be a good place to start.

 Ttyl :-),
         Al

--- GoldED+/LNX 1.1.5-b20180707