pop 110/995, imap 143/993 ?
Robert Wolf
r.wolf.conf at gmail.com
Tue Aug 22 13:51:34 EEST 2017
On Tue, 22 Aug 2017, Ivan Warren wrote:
> Le 8/22/2017 à 10:03 AM, Robert Wolf a écrit :
> >
> > WRONG!!! The email is stored plain-text on the first server and then it can
> > be
> > sent to other few MX servers over plain-text connection. I.e. encrypted
> > connection does not protect emails, but the authentication credentials.
> >
> >
> Indeed.
>
> Encrypted (SSL/TLS) SMTP/IMAP/POP3 sessions only server 1 purpose : To encrypt
> authentication. Once a message is sent through a MTA, there is no guarantee of
> privacy whatsoever.
>
> End to End privacy can only be achieved through actual e-mail signing and
> encryption (PGP, S/MIME) (but only the message body is encrypted, not the
> headers).
Hello Ivan
yes, headers are not encrypted in plain-text SMTP, the same way as TCP and IP
and DNS Requests are not encrypted. One can only hide behind some anonymization
system (TOR, Proxy, VPN for TCP, IP, DNS) or some non-presonal mail system to
anonymize mail headers to not be able to connect real persones with mail
sender/recipient.
Regards,
Robert.
More information about the dovecot
mailing list