Hi, > How could unauthenticated TLS be in scope for a TLS BCP when it has > not even been deployed yet? It isn't a current practice.
Peter mentioned XMPP server-to-server, and I think Viktor (?) mentioned MTA-to-MTA. Presumably, unauthenticated in this case equals "code does not check cert". Which, not without irony, is what PHP and Python used to do, presumably in an attempt to get the user to have code that runs. Ralph -- Ralph Holz I8 - Network Architectures and Services Technische Universität München http://www.net.in.tum.de/de/mitarbeiter/holz/ Phone +49.89.289.18010 PGP: A805 D19C E23E 6BBB E0C4 86DC 520E 0C83 69B0 03EF _______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
