From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail From: BP25 Newsgroups: gmane.emacs.help Subject: Clarification about forced TLS connections with remote mailboxes and smtp Date: Tue, 23 Apr 2024 16:57:19 +0100 Message-ID: <875xw8cbs0.fsf@RISEUP> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="3609"; mail-complaints-to="usenet@ciao.gmane.io" To: help-gnu-emacs@gnu.org Original-X-From: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Wed Apr 24 02:25:31 2024 Return-path: Envelope-to: geh-help-gnu-emacs@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1rzQS1-0000kE-QQ for geh-help-gnu-emacs@m.gmane-mx.org; Wed, 24 Apr 2024 02:25:30 +0200 Original-Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1rzQRA-0001zk-Pk; Tue, 23 Apr 2024 20:24:36 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1rzQR9-0001zL-9j for help-gnu-emacs@gnu.org; Tue, 23 Apr 2024 20:24:35 -0400 Original-Received: from mx1.riseup.net ([198.252.153.129]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1rzQR7-00069D-7a for help-gnu-emacs@gnu.org; Tue, 23 Apr 2024 20:24:35 -0400 Original-Received: from fews02-sea.riseup.net (fews02-sea-pn.riseup.net [10.0.1.112]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by mx1.riseup.net (Postfix) with ESMTPS id 4VPKVk5CDGzDqqX for ; Wed, 24 Apr 2024 00:24:30 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1713918270; bh=DSgK7BoeA66yQ4tXJ3tqbFGCXgRBS2Kr3F/s1RzBJ/c=; h=From:To:Subject:Date:From; b=puvmkMrRGNSbiNyyRRwu1v8xGRFlj9Oi8hS3eTYrp5i4H1dTaM9HJKPKTEN6NN48J B0c6439Yxi4c98m9GiTu9l+99MXljrTMgxokHh6w4KmDr6fqZtugz+ZxAIEXx5Fxip fy3wB7KEMWLe+xNeuq+tVCHfeWw0ikmY/ctyO8BY= X-Riseup-User-ID: AC3988EAF3AAFA5B291C60B53ADF781658949BDC3E8588FB0F21B2038DDA3881 Original-Received: from [127.0.0.1] (localhost [127.0.0.1]) by fews02-sea.riseup.net (Postfix) with ESMTPSA id 4VPKVk1y31zFsvq for ; Wed, 24 Apr 2024 00:24:30 +0000 (UTC) Received-SPF: pass client-ip=198.252.153.129; envelope-from=bp25@riseup.net; helo=mx1.riseup.net X-Spam_score_int: -12 X-Spam_score: -1.3 X-Spam_bar: - X-Spam_report: (-1.3 / 5.0 requ) BAYES_00=-1.9, DATE_IN_PAST_06_12=1.543, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001 autolearn=no autolearn_force=no X-Spam_action: no action X-BeenThere: help-gnu-emacs@gnu.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Users list for the GNU Emacs text editor List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Original-Sender: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Xref: news.gmane.io gmane.emacs.help:146456 Archived-At: Hello, I have a few questions. Is there a kind soul who would clarify a few things for me please? 1. I use Rmail to fetch my messages from remote mailboxes. Do you know if using the url starting with pops:// or imaps:// always forces the connection to be encrypted via TLS over SSL? 1a. Then what happens when only the Emacs movemail is available? I think that no encrypted connection is supported for the POP protocol then. 1b. Suppose we're using instead the Mailutils movemail: does the --tls flag only affect connections with URL starting by pop:// or imap://, and doesn't affect connections whose URL starts by pops:// or imaps://? 2. I read on the movemail manual ``The deprecated POP3S protocol is also supported. It is enabled by an URL beginning with pops:// instead of pop://'' but I read on the Emacs manual ``If using Mailutils movemail, you may wish to use =E2=80=98pops=E2=80=99 in place of =E2=80=98pop=E2=80= =99.'' therefore I'm confused on whether this syntax is obsolete or recommended! I use Message and I send emails by using smtpmail-send-it. I also set variables smtpmail-smtp-service 465 and smtpmail-stream-type 'ssl. 3a. Does setting either one of these last two varibales already force the connection to happen via TLS over SSL? 3b. If neither of the two variables is set but the SMTP server I use says that: --8<---------------cut here---------------start------------->8--- ``If your mail client does not support secure SMTP, you cannot use our server as your SMTP. You might have the option of choosing either TLS or SSL for the secure connection. Both protocols work, but most ISPs will block port 25 (used by TLS), so we recommend that you choose SSL'' and later adds that ``For security reasons, we no longer support SSL.'' --8<---------------cut here---------------end--------------->8--- then does it mean that I cannot have accidentally exposed my login details or other information by initiating a nonencrypted connection? 3c. Do you agree that the quoted information from my SMTP server above is confusing?