pgpfan:starttls
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
pgpfan:starttls [2020/06/22 16:26] – [Checking for STARTTLS] added index b.walzer | pgpfan:starttls [2021/11/23 12:56] (current) – [Checking for STARTTLS] highlight b.walzer | ||
---|---|---|---|
Line 13: | Line 13: | ||
=====Bad News===== | =====Bad News===== | ||
- | STARTTLS as implemented now is fairly easy to interfere with on the network. Someone who can change traffic on the network can force the email servers to downgrade to no encryption at all. | + | STARTTLS as implemented now is fairly easy to interfere with on the network. Someone who can change traffic on the network can force the email servers to downgrade to no encryption at all. If such interference is done on a wide scale it would be publicly noticed so such attacks would be directed against particular entities in most political environments. |
STARTTLS does not protect email on any email servers used. The operators of those servers have complete and easy access to your emails. | STARTTLS does not protect email on any email servers used. The operators of those servers have complete and easy access to your emails. | ||
Line 25: | Line 25: | ||
In some cases it might be useful to know if STARTTLS is being used between you and a particular correspondent. That information is available in the header of the email. Search through the header information until you find the '' | In some cases it might be useful to know if STARTTLS is being used between you and a particular correspondent. That information is available in the header of the email. Search through the header information until you find the '' | ||
- | <code email> | + | <code email [highlight_lines_extra=" |
Received: from mail-dm6nam12olkn2107.outbound.protection.outlook.com ([40.93.27.101] helo=NAM12-DM6-obe.outbound.protection.outlook.com) | Received: from mail-dm6nam12olkn2107.outbound.protection.outlook.com ([40.93.27.101] helo=NAM12-DM6-obe.outbound.protection.outlook.com) | ||
by mail.example.com with esmtps (TLSv1.2: | by mail.example.com with esmtps (TLSv1.2: |
pgpfan/starttls.1592843163.txt.gz · Last modified: 2020/06/22 16:26 by b.walzer