Linked by Thom Holwerda on Thu 12th Apr 2012 08:59 UTC
Internet & Networking I would honestly serve at the altar of the person that did this. Keep the debugging information, but for the love of god, make your email client do something pretty and useful with it.
Permalink for comment 513979
To read all comments associated with this story, please click here.
Member since:

It's even worse in that encrypted SMTP connections only happen between SMTP clients and servers that support it

Even worse, most servers default to accept any certificate from other servers regardless of expiration or validity. You will never know if someone does a MITM attack on your connections.
Server-to-server TLS is rather meaning less, really.

TLS, SASL, and other encryption/authentication methods are really only useful if you control *EVERY* SMTP client and server in the chain.

Not at all. TLS is essential for the confidentiality of your login credentials when you send and receive mail from the server.

Reply Parent Score: 2