Skip to Content [alt-c]

Blog

Comment

In reply to STARTTLS Considered Harmful

Reader Mike Spooner on 2017-08-27 at 11:23:

Re "dedicated TLS ports are still widely supported by ... client email implementations".

On the desktop and perhaps tablets too, that assertion is mostly accurate, but on mobile ('droid phones, iOS) it really isn't, even as late as 2017... most such apps give encryption config choices of "TLS", "TLS (dont check certificate)" or "None" - however, this almost always actually means "STARTTLS" or "None", and not straight TLS.

Frustrating!

Reply

Post a Reply

Your comment will be public. To contact me privately, email me. Please keep your comment polite, on-topic, and comprehensible. Your comment may be held for moderation before being published.

(Optional; will be published)

(Optional; will not be published)

(Optional; will be published)

  • Blank lines separate paragraphs.
  • Lines starting with > are indented as block quotes.
  • Lines starting with two spaces are reproduced verbatim (good for code).
  • Text surrounded by *asterisks* is italicized.
  • Text surrounded by `back ticks` is monospaced.
  • URLs are turned into links.
  • Use the Preview button to check your formatting.