NNTPS pointers

Tue Oct 19 22:02:09 UTC 2021

On 10/19/21 3:45 PM, Julien ÉLIE wrote:
> Hi Grant,

Hi,

> Do you know news servers implementing TLS for transit?

I can't produce a name here and now.  But I know that I've seen TLS 
referenced when discussing configurations with peers in the past.

I'd like to start offering NNTPS (433) support on my servers.

> If that's the case, as nnrpd has TLS support and implements IHAVE, maybe 
> you could try to start 2 instances of nnrpd (one listening to port 563 
> for readers, and another to port 433 for instance).  Remote news servers 
> may send you articles to port 433 using TLS and IHAVE.
> I believe it would work.  Yet, not as fast as innd would, though.

Hum.  That sounds sub-optimal.  But it might be better than nothing.

> And innfeed does not implement TLS either...

:-(

I think I'll explore options round stunnel et al. and tricks to allow 
the local daemon to see the real remote IP.

Thank you for your input Julien.

-- 
Grant. . . .
unix || die

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4013 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://lists.isc.org/pipermail/inn-workers/attachments/20211019/68c4b7ee/attachment.bin>