Page MenuHomePhabricator

lists.wikimedia.org doesn't use opportunistic encryption
Closed, DuplicatePublic

Description

As the title suggests. I checked the headers of some Checkuser-l mails out of curiosity, and realised they were delivered to my MX as plain text. I think it would be best for privacy if lists could add support for STARTTLS on the SMTP stage.

Event Timeline

jimmyxu raised the priority of this task from to Needs Triage.
jimmyxu updated the task description. (Show Details)
jimmyxu added a subscriber: jimmyxu.

This is a duplicate of the more general T101451 (sorry, I should have noticed it), Also note that without T101452, you are still leaking the contents to plaintext when replying to checkuser-l.