Re: dragonfly mail agent (dma) no tls by default

In reply to: Paul Eskello : "dragonfly mail agent (dma) no tls by default"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Panayotis Manganaris <panos.manganaris_at_gmail.com>
Date: Sun, 24 Nov 2024 21:05:01 UTC

Paul Eskello <paul.eskello@gmail.com> writes:

> why is tls (yeah well, starttls) disabled by default?

I reckon this is because the relevant configuration is not entirely standardized.

Many servers offer IMAP+STARTTLS i.e. STARTTLS over IMAP port 143 instead of the traditional IMAP over SSL/TLS (IMAPS) on port 993.

> Isn't that too conservative in soon-to-be 2025?

Regardless of date, an engineer should be as conservative as needed to uphold the principle of least surprise. Sometimes that means admins must assign ports as needed.