Closed Bug 1535202 Opened 7 years ago Closed 5 years ago

STARTTLS Everywhere

Categories

(Infrastructure & Operations :: Infrastructure: Mail, task)

Product:
Infrastructure & Operations
Component:
Infrastructure: Mail
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: sjw+bugzilla, Unassigned)

References

(
URL
)

Details

The EFF started a project similar to HTTPS Everywhere, but for mail servers.
A static list of policies guarantees, that TLS with verified certificates is used to deliver the mail, without the possibility to downgrade the connection.

While MTA-STS is not yet widely supported, the policy list created by STARTTLS Everywhere can easily be integrated in existing mail servers.

Mozilla could support this project by adding it's domains to the policy list.
You need to submit a request to add the domains and may need to verify the ownership.

This does not affect any mail sent by Mozilla, but allows to configure your own server to only send mails over a secure connection to Mozilla.

Google is already using it's own proprietary list for this:
https://transparencyreport.google.com/safer-email/overview

The link in comment 0 indicates EFF wound down the project on 2020-04-29.

At this point there's nothing left to do in this request, so I'm closing this out.

Sorry that nobody addressed it sooner.

Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.