pgpfan:starttls
Differences
This shows you the differences between two versions of the page.
Next revision | Previous revisionLast revisionBoth sides next revision | ||
pgpfan:starttls [2020/06/22 02:31] – created b.walzer | pgpfan:starttls [2020/06/23 16:05] – [Bad News] but not *that* bad b.walzer | ||
---|---|---|---|
Line 13: | Line 13: | ||
=====Bad News===== | =====Bad News===== | ||
- | STARTTLS as implemented now is fairly easy to interfere with on the network. Someone who can change traffic on the network can force the email servers to downgrade to no encryption at all. | + | STARTTLS as implemented now is fairly easy to interfere with on the network. Someone who can change traffic on the network can force the email servers to downgrade to no encryption at all. If such interference is done on a wide scale it would be publicly noticed so such attacks would be directed against particular entities in most political environments. |
STARTTLS does not protect email on any email servers used. The operators of those servers have complete and easy access to your emails. | STARTTLS does not protect email on any email servers used. The operators of those servers have complete and easy access to your emails. | ||
Line 37: | Line 37: | ||
Because the email headers can be changed by someone interfering with the network connection a finding of " | Because the email headers can be changed by someone interfering with the network connection a finding of " | ||
+ | |||
+ | [[pgpfan: | ||
pgpfan/starttls.txt · Last modified: 2021/11/23 12:56 by b.walzer