encryption of MAPI
mkuhne at microsoft.com
Wed Aug 23 12:23:02 GMT 2000
Your willingness to assume the worst motives without ever asking for the
real reason seems to be a common symptom.
Did you ever wonder what these people may think when you ask them for
cooperation (i.e. disclosure of RPC protocols)?
Escalation Engineer, Critical Problem Resolution (CPR)
From: James Sutherland [mailto:jas88 at cam.ac.uk]
Sent: Wednesday, August 23, 2000 11:39 AM
To: Luke Kenneth Casson Leighton
Cc: evolution at lists.helixcode.com;
evolution-hackers at lists.helixcode.com; Multiple recipients of list
Subject: Re: encryption of MAPI
> but seriously, the purpose of 10100101 is to make cleartext less readable.
> for encryption, you use DCE/RPC's NTLMSSP, with sign and seal requested.
> MAPI's job is not to encrypt, but to do mail.
OK, if this obfuscation isn't for security, what's it for? The usual, no
doubt - just make it more difficult for people to compete...
> NTLMSSP's job is to authenticate, sign and seal.
Bleurgh. Let's hope the final judgement from the Supreme Court (or the EU
case) prohibits MICROS~1 from obfuscating APIs, protocols etc...
More information about the samba-technical