James Knott wrote:
On 03/25/2015 08:40 AM, Per Jessen wrote:
In general, email is moving to encryption with SSL/TLS. I'm not sure about the "in general" in that. We process a lot of email daily, 99% is unencrypted. I'd have to check the logs to see whether there's been any growth in TLS usage.
Many email providers are now supporting or even requiring SSL/TLS.
Supporting definitely, but that's not really new. Well, I don't think so, I'm still checking the logs. Requiring TLS - I haven't seen (m)any of those, except those that specifically offer secure services.
StartTLS is one method of doing that. It's the only one I know of unless you encrypt the entire network (IPsec, VPN) which doesn't really make sense for email, unless you're on a closed network.
The other method is to use specific ports for SSL/TLS.
Do you have some info on how that works with any arbitrary email host? I see no support for that in e.g. postfix. It's all STARTTLS. -- Per Jessen, Zürich (5.6°C) http://www.hostsuisse.com/ - virtual servers, made in Switzerland. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org