[rsyslog-notify] Forum Thread: Re: TLS, but without supplying cert info? - (Mode 'reply')
noreply at adiscon.com
noreply at adiscon.com
Thu Oct 30 12:12:14 CET 2014
User: rgerhards
Forumlink: http://kb.monitorware.com/viewtopic.php?p=25057#p25057
Message:
----------
You don't need CERTS to do TLS encryption. If it is not present, the
session key is exchanged via Diffie-Hellman. This does not affect the
security of the encryption. HOWEVER, without a cert you obviously do not
know whom you talk with, so this does NOT guard against man-in-the-middle
attacks.
HTH
Rainer
More information about the rsyslog-notify
mailing list