From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail From: Robert Pluim Newsgroups: gmane.emacs.help Subject: Re: Insecure Mail Sending Warning Date: Fri, 23 Oct 2020 18:09:35 +0200 Message-ID: References: <878sbxg4o8.fsf@robertthorpeconsulting.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="8563"; mail-complaints-to="usenet@ciao.gmane.io" Cc: help-gnu-emacs@gnu.org To: Robert Thorpe Original-X-From: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Fri Oct 23 19:06:21 2020 Return-path: Envelope-to: geh-help-gnu-emacs@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1kW0WD-00029Y-Fv for geh-help-gnu-emacs@m.gmane-mx.org; Fri, 23 Oct 2020 19:06:21 +0200 Original-Received: from localhost ([::1]:36930 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1kW0WC-0007aZ-GX for geh-help-gnu-emacs@m.gmane-mx.org; Fri, 23 Oct 2020 13:06:20 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:44122) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kVzdN-0002GV-6j for help-gnu-emacs@gnu.org; Fri, 23 Oct 2020 12:09:41 -0400 Original-Received: from mail-wr1-x42c.google.com ([2a00:1450:4864:20::42c]:41348) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1kVzdL-0006uN-HA for help-gnu-emacs@gnu.org; Fri, 23 Oct 2020 12:09:40 -0400 Original-Received: by mail-wr1-x42c.google.com with SMTP id s9so2518180wro.8 for ; Fri, 23 Oct 2020 09:09:38 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:references:mail-copies-to:gmane-reply-to-list :date:in-reply-to:message-id:mime-version:content-transfer-encoding; bh=jEGhK5thrDl2mEaG4jqwHBFae/YNgRDiR29A14izVTw=; b=EKAu2glM0r3WfgbzBG2jISrI0wWf5oclMyn1Z8Ib9ZoGz0Td+eECI+ScaLe0jGdzpR +iaQjEXKEvDPuKEMkLzJUpImG5d+w87ZFcZyDFz3oe/c+tLZcVYMJmUzuBTbj35LgnqF ++d1IKFvK0DRm+jDnWZaOBA/Kx0YXOcfRdfRsOQSQiXHLOIDF5CbnyK4v2VOAED2ZZEg SEFBRVDEfodYFOhF7O6qqaHGXsN+yxBpC1Ymeqp2ZGn8SBH59Doer8gF6/mNcF+LsReF WReCCJcjnO0KAAjvShlu8IvDlZjhC6cu2oHu3dZFeis1xKsCcvmZqqh4jeoCE1il7iLa vO5w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:references:mail-copies-to :gmane-reply-to-list:date:in-reply-to:message-id:mime-version :content-transfer-encoding; bh=jEGhK5thrDl2mEaG4jqwHBFae/YNgRDiR29A14izVTw=; b=j7QmGGe+htO44GdXpdRo09SqoCw68CnMbmTx/DzqTWBbC8TLhPLIf4BY3Ly8VkyEBn yBPoeY+JQOQSetCimwpGBLrcfkKr/OozYOfAZrOwAwP102ALa+2M4OrBCKfdc4V4d99C OH/uS68amVJrU5t2/yeibZ7ifBWA73zxSeZfPfQ3qyGjqfp+aN8Q3BdWlCATMgpx4PTR t+a7ZpYA1x5EvlMMwYlsVnRVhX9XTjAYPYC2/W0LhU5fFbahc83lRRgHL7oL3ZwPzvzs 9xck7CgeU6njl88YejbnGisyRYZj5/YgfWIiB2s5ou/K9F6kpgrK1YDwkfeqRqqqtXIx SYnA== X-Gm-Message-State: AOAM533BpAGkwkRvUAFidUlZvKBh7sf9nihiz7RFM8i3eO3jPjTyWW6j 2aYh75u0p9fBpf2UkZoztKZsQ4VTkFk= X-Google-Smtp-Source: ABdhPJyuqxE2Cf5dTnt7TV/nhKtQ/QAklRYWBStiwdSxkwZYc4z5f8xv5OyKuvRjvs6dPGcbertaqg== X-Received: by 2002:a5d:448b:: with SMTP id j11mr3335606wrq.129.1603469377159; Fri, 23 Oct 2020 09:09:37 -0700 (PDT) Original-Received: from rpluim-mac ([2a01:e34:ecfc:a860:4c16:5575:b46a:1ca5]) by smtp.gmail.com with ESMTPSA id x6sm4537773wmb.17.2020.10.23.09.09.35 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 23 Oct 2020 09:09:36 -0700 (PDT) Mail-Copies-To: never Gmane-Reply-To-List: yes In-Reply-To: <878sbxg4o8.fsf@robertthorpeconsulting.com> (Robert Thorpe's message of "Fri, 23 Oct 2020 01:35:35 +0100") Received-SPF: pass client-ip=2a00:1450:4864:20::42c; envelope-from=rpluim@gmail.com; helo=mail-wr1-x42c.google.com X-detected-operating-system: by eggs.gnu.org: No matching host in p0f cache. That's all we know. X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: help-gnu-emacs@gnu.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Users list for the GNU Emacs text editor List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Original-Sender: "help-gnu-emacs" Xref: news.gmane.io gmane.emacs.help:124649 Archived-At: >>>>> On Fri, 23 Oct 2020 01:35:35 +0100, Robert Thorpe said: Robert> When I send mail I get a warning about security. >> The TLS connection to is insecure for the following rea= son: >>=20 >> * TLS1.0 protocol is deprecated by standard bodies. Robert> Where is the URL of my mailserver. Robert> Can I fix this or is the problem on my mail provider's side? The problem is on the mail provider's side, I think. I=CA=BCm kind of surprised that a real mail provider still enables TLS1.0. You can test what it supports using gnutls-cli -p 587 Robert> I'm using port 587, which I thought was correct. 587 is the mail submission port. It normally starts out in cleartext, and is then upgraded to TLS with a STARTTLS command. I=CA=BCd recommend 465, which is TLS-only (although you'd have to set smtpmail-stream-type to 'tls) You'd still get the warning, but at least the entire connection would be encrypted (not that that means much when using TLS1.0) Robert --=20