undefined | Better HN

0 pointspixl976y ago0 comments

How does opportunistic encryption prevent a MITM from forcing the session into unencrypted mode when its established?

0 comments

It doesn't, but that's not the point of it. It's to prevent passive spying, like opportunistic TLS for SMTP.

I merely pointed it out because the OP was talking about encryption done at the TCP layer. :)

j / k navigate · click thread line to collapse

0 pointspixl976y ago0 comments

How does opportunistic encryption prevent a MITM from forcing the session into unencrypted mode when its established?

It doesn't, but that's not the point of it. It's to prevent passive spying, like opportunistic TLS for SMTP.

I merely pointed it out because the OP was talking about encryption done at the TCP layer. :)

j / k navigate · click thread line to collapse