pgpfan:starttls
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | Last revisionBoth sides next revision | ||
pgpfan:starttls [2020/06/22 16:26] – [Checking for STARTTLS] added index b.walzer | pgpfan:starttls [2020/06/23 16:05] – [Bad News] but not *that* bad b.walzer | ||
---|---|---|---|
Line 13: | Line 13: | ||
=====Bad News===== | =====Bad News===== | ||
- | STARTTLS as implemented now is fairly easy to interfere with on the network. Someone who can change traffic on the network can force the email servers to downgrade to no encryption at all. | + | STARTTLS as implemented now is fairly easy to interfere with on the network. Someone who can change traffic on the network can force the email servers to downgrade to no encryption at all. If such interference is done on a wide scale it would be publicly noticed so such attacks would be directed against particular entities in most political environments. |
STARTTLS does not protect email on any email servers used. The operators of those servers have complete and easy access to your emails. | STARTTLS does not protect email on any email servers used. The operators of those servers have complete and easy access to your emails. |
pgpfan/starttls.txt · Last modified: 2021/11/23 12:56 by b.walzer