On Fri, 27 May 2016, Marcus Watts wrote: > Of course you still need to somehow protect against a "downgrade" MITM > attack. How is this generally done? I'm thinking about, for example, a MITM who silently drops the TAG_ENCRYPT message in the protocol I described. It seems like we need a secure TAG_AUTH_something that makes a statement about what has been negotiated before we start the message exchange or else some part of the initial exchange could have been dropped. ? sage -- To unsubscribe from this list: send the line "unsubscribe ceph-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
