Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ability to enforce tls usage #34

Open
FelixSchwarz opened this issue Aug 5, 2024 · 0 comments
Open

ability to enforce tls usage #34

FelixSchwarz opened this issue Aug 5, 2024 · 0 comments

Comments

@FelixSchwarz
Copy link
Owner

FelixSchwarz commented Aug 5, 2024
edited
Loading

By default the SMTP client should enforce usage of TLS to prevent MITM downgrade attacks. It must be possible to disable TLS usage though.

CLI options from msmtp:

--tls[=(on|off)]             enable/disable TLS encryption
--tls-starttls[=(on|off)]    enable/disable STARTTLS for TLS
--tls-trust-file=[file]      set/unset trust file for TLS
--tls-crl-file=[file]        set/unset revocation file for TLS
--tls-fingerprint=[f]        set/unset trusted certificate fingerprint for TLS
--tls-certcheck[=(on|off)]   enable/disable server certificate checks for TLS
--tls-key-file=[file]        set/unset private key file for TLS
--tls-cert-file=[file]       set/unset private cert file for TLS
--tls-priorities=[prios]     set/unset TLS priorities.
--tls-host-override=[host]   set/unset override for TLS host verification.
--tls-min-dh-prime-bits=[b]  set/unset minimum bit size of DH prime
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@FelixSchwarz