[Users] PGP in claws
Kevin Chadwick
m8il1ists at gmail.com
Sat Apr 4 15:59:13 CEST 2015
On Thu, 02 Apr 2015 21:08:06 -0400
Mike Miskulin wrote:
> as more and more email goes by
> TLS server to server connection.
This thread is silly, you have the key so do what you want. GPG works
well with claws. I just wanted to throw in that until the issues with
DNSSEC are resolved for key size and deployability (amplification etc.)
and DANE is in use then STARTTLS means that there is 0 guarantee of
security protection from TLS for email where the connection can be MITM
which is likely required for plain text interception too. Of course
passive eavesdroppers will not get the data by default due to STARTTLS
but they could prevent STARTTLS if they wanted to become active. The
best you can do is DOS yourself in case of an attack but even that is
not practical today.
More information about the Users
mailing list