[tor-bugs] #10989 [BridgeDB]: bridgedb should use starttls for outgoing mails

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Mar 13 00:09:33 UTC 2014 

#10989: bridgedb should use starttls for outgoing mails
-------------------------+-------------------------------------------------
     Reporter:  arma     |      Owner:  isis
         Type:           |     Status:  closed
  enhancement            |  Milestone:
     Priority:  major    |    Version:
    Component:           |   Keywords:  bridgedb-email, bridgedb-gsoc-
  BridgeDB               |  application
   Resolution:           |  Parent ID:
  worksforme             |
Actual Points:           |
       Points:           |
-------------------------+-------------------------------------------------
Changes (by isis):

 * status:  assigned => closed
 * cc: Sebastian, weasel (added)
 * resolution:   => worksforme


Comment:

 Replying to [comment:5 sysrqb]:
 > Replying to [comment:3 isis]:
 > > I do not recall off the top of head if emails sent out from BridgeDB
 are sent through Postfix, or directly sent from the `bridgedb.EmailServer`
 module.
 >
 > It is the former, and so far it seems to be doing what we want. I was
 silly and assumed it was the latter when I talked to arma. I just tested
 the inter-operation with yahoo.
 >
 > SMTPS is used during the return, so its security level is not
 immediately obvious but it's still better than plaintext.
 >

 Awesome. Thanks for testing and gathering all this info. Thanks also,
 cypherpunks. :)

 > And, in addition to cypherpunks' post,
 > gmail -> tp.o uses `TLSv1 with cipher ECDHE-RSA-RC4-SHA`
 >

 Yeah, I'll bet they ''really'' want that forward secrecy for that RC4.

 This one isn't something we can fix on ponticum, as far as I know. I
 believe we'd need to set the following host-wide for all of
 `@torproject.org` in `/etc/postfix/main.cf`:

 {{{
 smtp_tls_exclude_ciphers = aNULL, MD5, DES, [...], RC4
 }}}

 I'm neither a sysadmin nor a Postfix wizard, so I might be entirely wrong.
 Seeing as STARTTLS is successfully negotiated, however, I'm going to close
 this as `worksforme`.

 Perhaps someone from the sysadmin team who knows more about Postfix
 wizardry can comment on whether it's a good idea to disable RC4 for SMTP
 from `@torproject.org`; CCing sebastian and weasel.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10989#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list