Page MenuHomePhabricator

lists.wikimedia.org doesn't use opportunistic encryption
Closed, DuplicatePublic

Description

As the title suggests. I checked the headers of some Checkuser-l mails out of curiosity, and realised they were delivered to my MX as plain text. I think it would be best for privacy if lists could add support for STARTTLS on the SMTP stage.

Event Timeline

jimmyxu created this task.May 19 2015, 5:02 AM
jimmyxu raised the priority of this task from to Needs Triage.
jimmyxu updated the task description. (Show Details)
jimmyxu added a subscriber: jimmyxu.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMay 19 2015, 5:02 AM

This is a duplicate of the more general T101451 (sorry, I should have noticed it), Also note that without T101452, you are still leaking the contents to plaintext when replying to checkuser-l.

Krenair added a subscriber: Krenair.Jun 9 2015, 9:56 PM