You are viewing a plain text version of this content. The canonical link for it is here.
Posted to infrastructure-issues@apache.org by "Christopher Tubbs (JIRA)" <ji...@apache.org> on 2016/02/18 03:26:18 UTC
[jira] [Created] (INFRA-11284) Consider forwarding mail with TLS
Christopher Tubbs created INFRA-11284:
-----------------------------------------
Summary: Consider forwarding mail with TLS
Key: INFRA-11284
URL: https://issues.apache.org/jira/browse/INFRA-11284
Project: Infrastructure
Issue Type: Improvement
Components: Mail (qmail)
Reporter: Christopher Tubbs
Priority: Minor
GMail recently added a little padlock icon to received mail which indicates it received that email via an unsecured connection. This icon appears for email forwarded to GMail from my apache.org address, indicating ASF is not delivering traffic to the destination SMTP servers with TLS (presumably STARTTLS on port 25, but I don't see details) when possible. Presumably, this doesn't just affect GMail, but any destination server our apache.org mail is being forwarded to (not all of which will support TLS).
While mailing list activity is generally public, some people may receive private, interpersonal, or sensitive email to their apache.org address (it's possible... I wouldn't recommend it, but you can't always control what you receive). At the very least, the mail headers, indicating the user's, potentially private, forwarding address is not safe-guarded.
I would probably rate this personally as pretty low-risk, low-priority, but it might be worth considering using TLS, when possible, to deliver forwarded email.
https://support.google.com/mail/answer/6330403
https://www.google.com/transparencyreport/saferemail/faq/
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)