On 11/12/2016 10:55 PM, li...@lazygranch.com wrote:
On Sun, 13 Nov 2016 01:43:17 -0500
"Bill Cole" <postfixlists-070...@billmail.scconsult.com> wrote:
<sniP
If the NSA/GCHQ capturing all of your SMTP traffic and saving it for
hypothetical future decryption is a realistic and significant
scenario in your threat model, you should reconsider your use of
email.
I'm in the USA and getting ready for life post Jan 20, 2017. It is very
likely the NSA will be after my email.
Implement DNSSEC and DANE
See https://www.ietf.org/proceedings/87/slides/slides-87-dane-2.pdf
That is the only way to truly avoid MITM with SMTP. And then only when
the server you are communicating with is also on board.
But it works.
