Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

"But what we need to know is, do people want nasally-insertable computers?"

computers / alt.online-service.comcast / Comcast No Longer Supporting Older Email Security Protocols

SubjectAuthor
* Comcast No Longer Supporting Older Email Security ProtocolsBoris
+- Re: Comcast No Longer Supporting Older Email Security ProtocolsBig Al
+- Re: Comcast No Longer Supporting Older Email Security ProtocolsVanguardLH
`- Re: Comcast No Longer Supporting Older Email Security ProtocolsAllodoxaphobia

1
Comcast No Longer Supporting Older Email Security Protocols

<thkfrd$31i57$1@dont-email.me>

  copy mid

https://www.novabbs.com/computers/article-flat.php?id=404&group=alt.online-service.comcast#404

  copy link   Newsgroups: alt.online-service.comcast
Path: i2pn2.org!i2pn.org!aioe.org!eternal-september.org!reader01.eternal-september.org!.POSTED!not-for-mail
From: bor...@invalid.com (Boris)
Newsgroups: alt.online-service.comcast
Subject: Comcast No Longer Supporting Older Email Security Protocols
Date: Wed, 5 Oct 2022 10:45:17 -0700
Organization: A noiseless patient Spider
Lines: 22
Message-ID: <thkfrd$31i57$1@dont-email.me>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Wed, 5 Oct 2022 17:45:17 -0000 (UTC)
Injection-Info: reader01.eternal-september.org; posting-host="08126781d915658348ca03f51e40e4d4";
logging-data="3197095"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1/GXeX+CuCu0DaZMemRf25B"
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101
Thunderbird/102.3.1
Cancel-Lock: sha1:sHkFuDi/IF2MyIiZDCMdSrgy68E=
Content-Language: en-US
 by: Boris - Wed, 5 Oct 2022 17:45 UTC

In the email sent out by Comcast, announcing that some devices/email
clients may be using software that uses TLS 1.1 or lower, will no longer
be supported by Comcast mail.

In that letter, Comcast gives an xfinity email address to which one can
send a test email to see if your email software passes their
requirements. I did, and I pass.

But why does the letter say that one can test up to five times a day?

Here's some of the letter:

"We noticed you're accessing your Comcast.net email through an older
email application or device, such as an older smartphone. Unfortunately,
some older devices, operating systems, and email applications don't
support current security protocols and therefore put your data at risk."

"We'll contact you again before these changes are made. You can check if
your email applications are up to date by sending a test email to
xfinity-tls-test@alerts.xfinity.com up to five times per day. "

Re: Comcast No Longer Supporting Older Email Security Protocols

<thkhce$31lrc$2@dont-email.me>

  copy mid

https://www.novabbs.com/computers/article-flat.php?id=405&group=alt.online-service.comcast#405

  copy link   Newsgroups: alt.online-service.comcast
Path: i2pn2.org!i2pn.org!eternal-september.org!reader01.eternal-september.org!.POSTED!not-for-mail
From: Bea...@invalid.com (Big Al)
Newsgroups: alt.online-service.comcast
Subject: Re: Comcast No Longer Supporting Older Email Security Protocols
Date: Wed, 5 Oct 2022 14:11:25 -0400
Organization: A noiseless patient Spider
Lines: 21
Message-ID: <thkhce$31lrc$2@dont-email.me>
References: <thkfrd$31i57$1@dont-email.me>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Date: Wed, 5 Oct 2022 18:11:26 -0000 (UTC)
Injection-Info: reader01.eternal-september.org; posting-host="8f85f71f208c588970230707b5584df5";
logging-data="3200876"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX18eiYhy6Bh7UNf39uTwZj48ifvJtM/0elw="
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101
Thunderbird/91.11.0
Cancel-Lock: sha1:KQdagS0pVwimprZjC6ZWnohOlBQ=
In-Reply-To: <thkfrd$31i57$1@dont-email.me>
Content-Language: en-US
 by: Big Al - Wed, 5 Oct 2022 18:11 UTC

On 10/5/22 13:45, this is what Boris wrote:
> In the email sent out by Comcast, announcing that some devices/email clients may be using software that uses TLS 1.1 or
> lower, will no longer be supported by Comcast mail.
>
> In that letter, Comcast gives an xfinity email address to which one can send a test email to see if your email software
> passes their requirements.  I did, and I pass.
>
> But why does the letter say that one can test up to five times a day?
>
>
> Here's some of the letter:
>
> "We noticed you're accessing your Comcast.net email through an older email application or device, such as an older
> smartphone. Unfortunately, some older devices, operating systems, and email applications don't support current security
> protocols and therefore put your data at risk."
>
> "We'll contact you again before these changes are made. You can check if your email applications are up to date by
> sending a test email to xfinity-tls-test@alerts.xfinity.com up to five times per day. "
>
Up to 5 times a day, is probably to keep a flood of testing down to a manageable number. My Guess.

Re: Comcast No Longer Supporting Older Email Security Protocols

<1i7m8ar0j6btz.dlg@v.nguard.lh>

  copy mid

https://www.novabbs.com/computers/article-flat.php?id=406&group=alt.online-service.comcast#406

  copy link   Newsgroups: alt.online-service.comcast
Path: i2pn2.org!i2pn.org!aioe.org!news.uzoreto.com!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: V...@nguard.LH (VanguardLH)
Newsgroups: alt.online-service.comcast
Subject: Re: Comcast No Longer Supporting Older Email Security Protocols
Date: Wed, 5 Oct 2022 15:49:36 -0500
Lines: 43
Message-ID: <1i7m8ar0j6btz.dlg@v.nguard.lh>
References: <thkfrd$31i57$1@dont-email.me>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Trace: individual.net rSQNuZfa6D6P9C7w6kM1ewMXMYaKZ946SRoR4hbW5Nfb6TgdaG
Cancel-Lock: sha1:JfDZ4mTX9g9smawtMIJ3jHJ9Fl0=
User-Agent: 40tude_Dialog/2.0.15.41
 by: VanguardLH - Wed, 5 Oct 2022 20:49 UTC

Boris <boris@invalid.com> wrote:

> In the email sent out by Comcast, announcing that some devices/email
> clients may be using software that uses TLS 1.1 or lower, will no longer
> be supported by Comcast mail.
>
> In that letter, Comcast gives an xfinity email address to which one can
> send a test email to see if your email software passes their
> requirements. I did, and I pass.
>
> But why does the letter say that one can test up to five times a day?
>
> Here's some of the letter:
>
> "We noticed you're accessing your Comcast.net email through an older
> email application or device, such as an older smartphone. Unfortunately,
> some older devices, operating systems, and email applications don't
> support current security protocols and therefore put your data at risk."
>
> "We'll contact you again before these changes are made. You can check if
> your email applications are up to date by sending a test email to
> xfinity-tls-test@alerts.xfinity.com up to five times per day. "

A user can employ multiple e-mail clients, not just one. The limit is
probably to ensure there is decent response from the test service rather
than having all their users flood it at the same time while testing an
unusually high count of e-mail clients. Plus, a Comcast account can
have more than one e-mail account: owner account plus up to 5 member
accounts (or maybe it's 5 total for owner+member). If their test server
gets flooded, users would get frustrated in not receiving the response
e-mail for a long time instead of nearly immediately.

SSL was found vulnerable, so it got dropped. SSL 3.0 was the last
version. TLS 1.0 is exactly the same as SSL 3.0, except the handshaking
was changed for TLS 1.0, so SSL 3.0 and TLS 1.0 were made incompatible,
but security was not improved, so TLS 1.0 is just as vulnerable as SSL
3.0. TLS 1.1 came next, and found vulnerable. So, many sites or
services now require TLS 1.2 at a minimum although TLS 1.3 is now
available.

https://en.wikipedia.org/wiki/Transport_Layer_Security#SSL_1.0,_2.0,_and_3.0

https://www.venafi.com/blog/why-its-dangerous-use-outdated-tls-security-protocols

Re: Comcast No Longer Supporting Older Email Security Protocols

<slrntjs9sj.1vc7.trepidation@vps.jonz.net>

  copy mid

https://www.novabbs.com/computers/article-flat.php?id=407&group=alt.online-service.comcast#407

  copy link   Newsgroups: alt.online-service.comcast
Path: i2pn2.org!i2pn.org!aioe.org!news.uzoreto.com!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: trepidat...@example.net (Allodoxaphobia)
Newsgroups: alt.online-service.comcast
Subject: Re: Comcast No Longer Supporting Older Email Security Protocols
Date: 6 Oct 2022 00:56:07 GMT
Lines: 8
Message-ID: <slrntjs9sj.1vc7.trepidation@vps.jonz.net>
References: <thkfrd$31i57$1@dont-email.me>
X-Trace: individual.net BxokJJM0C2ywqBVI5D09dwJdu5bgGo6v7g7DzbO88zGd3SjeOP
Cancel-Lock: sha1:PplWcHshLL7G7cN233E3WVjnTQE=
User-Agent: slrn/1.0.3 (FreeBSD)
 by: Allodoxaphobia - Thu, 6 Oct 2022 00:56 UTC

On Wed, 5 Oct 2022 10:45:17 -0700, Boris wrote:
>
> But why does the letter say that one can test up to five times a day?

Probably because if one needs to fiddle with their environment to
properly set up a new security protocol to satisfy Comcast,
it never, ever works ok on the first revision.

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor