[tor-talk] Tor Mail Gateway
Peter Tonoli
Peter+tor at metaverse.org
Mon Aug 19 07:58:45 UTC 2013
On 8/19/13, 5:52 PM, Moritz Bartl wrote:
> On 19.08.2013 05:31, ITechGeek wrote:
>>>> PGP mails, and I'm thinking about enforcing TLS.
>> If you enforce TLS, you won't be able to send/receive email for many
>> domains.
>
> Yes.
>
> I want to have a script that scans all incoming mail for the used cipher
> and in the case of a weak, non-PFS cipher, or no TLS at all, emails both
> the sender and postmaster at senderdomain to get their stuff fixed and to
> get the sender to move to a proper provider. I want this not only for
> this gateway, but for all mail servers I operate. The script should
> support pure notification, but also "bouncing" the mail with this custom
> reply for non-TLS (before-queue Milter).
To what point will this be? I'd say the majority of SMTP w/ TLS servers
are using self-signed certificates. It's arguable whether TLS with a
self signed certificate is any better than just plaintext.
Peter.
More information about the tor-talk
mailing list