Just wondering if there are any plans for TLS 1.3 in Hermes in the not too distant future?
TLS 1.2 was released in 2008 and TLS 1.3 in 2018
TLS 1.2 has various vulnerabilities and TLS 1.3 gets rid of these and has numerous other benefits.
Moving forward TLS 1.3 is the prefered option. Most major email providers are now supporting TLS 1.3 so it makes a lot of sense to upgrade Hermes to support TLS 1.3 allowing TLS 1.2 to be redundant if your mailserver supports TLS 1.3
TLS 1.3 is relatively easy to implement, though manpower intensive. It is
low priority, simply because there are very few 1.3 only (note word only)
servers in existence at present, but it will get done.
Stunnel already supports this. Even if it's implemented in Hermes, what makes you think it will be supported in the future? This is not a one and done feature.
Stunnel looks like it will provide support for the long term, certainly longer than Hermes. Just install it and be done.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
For this application, stunnel (Unix commands aren't capitalised) is like
putting a homemade dressing (you know, one of those cotton ball and
micropore tape dealios) on a Hollywood actress' face. It turns the trick,
but it is Ugly with a capital Ug, and both cotton balls and micropore tape
have applications for which they were designed and aren't obtrusive. TLS
is like gauze and Tegaderm. It's meant for the job, lays flat (and looks
good), and even though its uses aren't nearly as flexible, you can be
guaranteed that it won't fall off.
Yes, I just used an extended metaphor from the domain of trauma nursing.
So sue me (and I'll defend myself in court to the limit of the law). I'm
not going to explain myself any further, except to note that TLS support
will never be dropped or lost from HERMES Mail, especially given how we're
using Eudora code together with the SSL engine from... take a guess...
hint: it's Qualcomm Eudora.
Stunnel already supports this. Even if it's implemented in Hermes, what
makes you think it will be supported in the future? This is not a one and
done feature.
Stunnel looks like it will provide support for the long term, certainly
longer than Hermes. Just install it and be done.
Of course, I certainly hope for Hermes to support this. Even so, I can ALSO use Stunnel if need be; whatever works and Stunnel does work. But, with respect, as we are already moving very slowly, but justifiably, on the Hermes project, what confidence can we have that TLS support will be ongoing? Or, for that matter, support for other bugs that come along in Hermes? We have limited resources.
Again, I appreciate the Hermes project and have financially supported it. I know I'm repeating myself but...as long as UTF-8 works, I'm satisfied.
Keep the interface
Fix UTF-8
Fix IMAP
Fix TLS
Change logo
That's it! I honestly have no issues with Eudora outside UTF-8.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
For the record and with respect, that's because you're (major assumption
here) unilingual. I speak (and write) a variety of languages, though as
long as I use English and Latin only, I'm safe, since good Latin uses only
the twenty-six letters of the English alphabet. But what if I decided to
parler en français and Eudora happened not to be available, so I use
webmail? The message would get mangled because it would be sent as
Unicode. Unicode support in HERMES Mail is quite simply non negotiable in
the interest of our international user base.
Of course, I certainly hope for Hermes to support this. Even so, I can
ALSO use Stunnel if need be; whatever works and Stunnel does work. But,
with respect, as we are already moving very slowly, but justifiably, on the
Hermes project, what confidence can we have that TLS support will be
ongoing? Or, for that matter, support for other bugs that come along in
Hermes? We have limited resources.
Again, I appreciate the Hermes project and have financially supported it.
I know I'm repeating myself but...as long as UTF-8 works, I'm satisfied.
Keep the interface
Fix UTF-8
Fix IMAP
Fix TLS
Change logo
That's it! I honestly have no issues with Eudora outside UTF-8.
Of course, I certainly hope for Hermes to support this. Even so, I can
ALSO use Stunnel if need be; whatever works and Stunnel does work. But,
with respect, as we are already moving very slowly, but justifiably, on the
Hermes project, what confidence can we have that TLS support will be
ongoing? Or, for that matter, support for other bugs that come along in
Hermes? We have limited resources.
Again, I appreciate the Hermes project and have financially supported it.
I know I'm repeating myself but...as long as UTF-8 works, I'm satisfied.
Keep the interface
Fix UTF-8
Fix IMAP
Fix TLS
Change logo
That's it! I honestly have no issues with Eudora outside UTF-8.
Just wondering if there are any plans for TLS 1.3 in Hermes in the not too distant future?
TLS 1.2 was released in 2008 and TLS 1.3 in 2018
TLS 1.2 has various vulnerabilities and TLS 1.3 gets rid of these and has numerous other benefits.
Moving forward TLS 1.3 is the prefered option. Most major email providers are now supporting TLS 1.3 so it makes a lot of sense to upgrade Hermes to support TLS 1.3 allowing TLS 1.2 to be redundant if your mailserver supports TLS 1.3
Thanks RobC
Eudora user since 2002 (possibly 2000)
Last edit: visualperception 2020-03-05
TLS 1.3 is relatively easy to implement, though manpower intensive. It is
low priority, simply because there are very few 1.3 only (note word only)
servers in existence at present, but it will get done.
On Sat, 29 Feb 2020, 23:38 Rob, robc2@users.sourceforge.net wrote:
Just so long as I know its in the pipeline.
Thanks,
Stunnel already supports this. Even if it's implemented in Hermes, what makes you think it will be supported in the future? This is not a one and done feature.
Stunnel looks like it will provide support for the long term, certainly longer than Hermes. Just install it and be done.
For this application, stunnel (Unix commands aren't capitalised) is like
putting a homemade dressing (you know, one of those cotton ball and
micropore tape dealios) on a Hollywood actress' face. It turns the trick,
but it is Ugly with a capital Ug, and both cotton balls and micropore tape
have applications for which they were designed and aren't obtrusive. TLS
is like gauze and Tegaderm. It's meant for the job, lays flat (and looks
good), and even though its uses aren't nearly as flexible, you can be
guaranteed that it won't fall off.
Yes, I just used an extended metaphor from the domain of trauma nursing.
So sue me (and I'll defend myself in court to the limit of the law). I'm
not going to explain myself any further, except to note that TLS support
will never be dropped or lost from HERMES Mail, especially given how we're
using Eudora code together with the SSL engine from... take a guess...
hint: it's Qualcomm Eudora.
On Wed, 23 Sep 2020, 14:33 Arthur-Boston, art-boston@users.sourceforge.net
wrote:
Of course, I certainly hope for Hermes to support this. Even so, I can ALSO use Stunnel if need be; whatever works and Stunnel does work. But, with respect, as we are already moving very slowly, but justifiably, on the Hermes project, what confidence can we have that TLS support will be ongoing? Or, for that matter, support for other bugs that come along in Hermes? We have limited resources.
Again, I appreciate the Hermes project and have financially supported it. I know I'm repeating myself but...as long as UTF-8 works, I'm satisfied.
Keep the interface
Fix UTF-8
Fix IMAP
Fix TLS
Change logo
That's it! I honestly have no issues with Eudora outside UTF-8.
For the record and with respect, that's because you're (major assumption
here) unilingual. I speak (and write) a variety of languages, though as
long as I use English and Latin only, I'm safe, since good Latin uses only
the twenty-six letters of the English alphabet. But what if I decided to
parler en français and Eudora happened not to be available, so I use
webmail? The message would get mangled because it would be sent as
Unicode. Unicode support in HERMES Mail is quite simply non negotiable in
the interest of our international user base.
On Thu, 24 Sep 2020, 11:00 Arthur-Boston, art-boston@users.sourceforge.net
wrote:
Major oops! I didn't notice UTF-8 on the list of things to fix. Mea maxima
culpa!
On Thu, 24 Sep 2020, 11:00 Arthur-Boston, art-boston@users.sourceforge.net
wrote: