What the real use of ssl ?

**Stabber** · 02-24-2012, 06:32 PM

Hi everyone !

I was wondering since with usenet you basically connect to a server why should i use secure connections ?

What's the real use ? Or is it just paranoia security to use it ?

**Hypatia** · 02-24-2012, 06:49 PM

mostly to overcome ISP throttling

**link2009** · 02-24-2012, 10:40 PM

The main reason is to bypass ISP throttling and/or blocking of Usenet traffic. The other paranoid side of the argument is to encrypt all headers and transfers between your PC and the Usenet server so that nobody really knows what you're leeching.

Either way, SSL is compromised with a man in the middle attack so if your ISP was required by law to "decrypt" your transfers, it wouldn't really matter that you're employing SSL on your traffic.

**anon** · 02-25-2012, 01:05 AM

Originally Posted by link2009

The main reason is to bypass ISP throttling and/or blocking of Usenet traffic.

Pretty much this, I'd say. They can however still see you downloading a ton of "gibberish", and some shapers also look for that. Another reason to use SSL could also be preventing others from easily seeing your NTTP login if you're stealing Wi-Fi from an unsecure network.

**cola** · 02-25-2012, 01:12 AM

Comcast will shape SSL traffic, but they use protocol agnostic shaping based on congestion.

**sandman_1** · 02-25-2012, 04:11 PM

Originally Posted by link2009

The main reason is to bypass ISP throttling and/or blocking of Usenet traffic. The other paranoid side of the argument is to encrypt all headers and transfers between your PC and the Usenet server so that nobody really knows what you're leeching.

Either way, SSL is compromised with a man in the middle attack so if your ISP was required by law to "decrypt" your transfers, it wouldn't really matter that you're employing SSL on your traffic.

Ya know, I don't think it is paranoid to have it where you don't want people, especially your ISP, knowing what you are downloading, especially since the Record and Movie companies are trying to get ISP's to do just that know what you are downloading. SSL does have its issues though. Also if an ISP wanted to really throttle you, SSL wouldn't be able to save ya.

**Stabber** · 02-25-2012, 05:56 PM

Thanks a lot for the info guys , i will turn it on then

**zootman** · 02-29-2012, 03:25 AM

Originally Posted by link2009

Either way, SSL is compromised with a man in the middle attack so if your ISP was required by law to "decrypt" your transfers, it wouldn't really matter that you're employing SSL on your traffic.

I thought one of the main 'selling points' of SSL was that it prevented MITM attacks(?)

**PastTense** · 02-29-2012, 05:35 AM

How do you turn it on?

**unoriginal** · 02-29-2012, 08:08 AM

There's nothing to turn on. You should just have to simply change the port number to take advantage of SSL. Just ask your newsprovider for the port numbers to use. Mostly likely it will be 443 or 563 instead of the standard 119.

Thread: What the real use of ssl ?

Thread Tools

Bookmarks

Bookmarks

Posting Permissions