On Tue, Aug 03, 2021 at 02:11:12PM -0400, Wietse Venema wrote:
> John Levine:
> > It appears that Wietse Venema said:
> > >Here's a nice writeup that illustrates why Postfix blocks ALPACA attacks.
> > >
> > >https://nakedsecurity.sophos.com/2021/06/11/alpaca-the-wacky-tls-security-vulnerability-wi
On 8/3/2021 12:23 PM, John Levine wrote:
It appears that Wietse Venema said:
Here's a nice writeup that illustrates why Postfix blocks ALPACA attacks.
https://nakedsecurity.sophos.com/2021/06/11/alpaca-the-wacky-tls-security-vulnerability-with-a-funky-name/
Just wondering, did you add the
John Levine:
> It appears that Wietse Venema said:
> >Here's a nice writeup that illustrates why Postfix blocks ALPACA attacks.
> >
> >https://nakedsecurity.sophos.com/2021/06/11/alpaca-the-wacky-tls-security-vulnerability-with-a-funky-name/
>
> Just wondering, did you add the anti-http stuff bec
On Tue, Aug 03, 2021 at 01:23:32PM -0400, John Levine wrote:
> >https://nakedsecurity.sophos.com/2021/06/11/alpaca-the-wacky-tls-security-vulnerability-with-a-funky-name/
>
> Just wondering, did you add the anti-http stuff because of ALPACA or was it
> already there?
Postfix is written *defensi
On Tue, Aug 03, 2021, John Levine wrote:
> Just wondering, did you add the anti-http stuff because of ALPACA or was it
> already there?
As a simple look at the source code of older releases shows
it was already there.
It appears that Wietse Venema said:
>Here's a nice writeup that illustrates why Postfix blocks ALPACA attacks.
>
>https://nakedsecurity.sophos.com/2021/06/11/alpaca-the-wacky-tls-security-vulnerability-with-a-funky-name/
Just wondering, did you add the anti-http stuff because of ALPACA or was it
Here's a nice writeup that illustrates why Postfix blocks ALPACA attacks.
https://nakedsecurity.sophos.com/2021/06/11/alpaca-the-wacky-tls-security-vulnerability-with-a-funky-name/
Wietse
