Skip to Content [alt-c]


In reply to STARTTLS Considered Harmful

Anonymous on 2014-11-18 at 23:01:

Hi Andrew

Yes, downgrade attacks are already done by at least one ISP:

This line caught my eye from your post Andrew: "Opportunistic encryption between SMTP servers, which is extremely important for preventing passive eavesdropping of email, requires STARTTLS on port 25"

Now, I have been using 465 port with SSL for ages when sending mail.

So does this mean that unless I use port 25 with STARTTLS there is never going to be opportunistic encryption between SMTP servers if I continue using 465 ? I mean, even tought my mail will be encrypted between my client and server, the continuing server-to-server delivery is not going to be encrypted if not using port 25?


Post a Reply

Your comment will be public. To contact me privately, email me. Please keep your comment polite, on-topic, and comprehensible. Your comment may be held for moderation before being published.

(Optional; will be published)

(Optional; will not be published)

(Optional; will be published)

  • Blank lines separate paragraphs.
  • Lines starting with > are indented as block quotes.
  • Lines starting with two spaces are reproduced verbatim (good for code).
  • Text surrounded by *asterisks* is italicized.
  • Text surrounded by `back ticks` is monospaced.
  • URLs are turned into links.
  • Use the Preview button to check your formatting.