Ahoj, Dňa Sat, 16 Mar 2024 16:53:23 +0100 Marco Moock via mailop <mailop@mailop.org> napísal:
> Forwarding (e.g. forwarding as attachment etc.) is still a thing and > if it is about security, I only trust e2e encrypted mails to be not > eavesdropped. Everything else is just a guess and nothing else. TLS is *Transport Layer Security*, that means exactly what it has in name, up to L4 is secured (with some limitations in STARTTLS). What happens in higher layers is not covered, and that is exactly true for many others L7 protocols, including HTTPS (someone mentioned it), as HTTP(S) server can forward traffic to everywhere too, it is only less known. Would you consider to avoid modern TLS for HTTP, just because it is only guess what happens after TLS termination point? IMO E2E is not holy grail of computer security, yes it can secure all seven network layers, but has its own disadvantages and can make false security feel too, if not done properly/with care. regards -- Slavko https://www.slavino.sk
pgpcv9wCmPF7N.pgp
Description: Digitálny podpis OpenPGP
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
