On Fri, 15 Jan 2016 09:52:35 PM Brian May via luv-main wrote:
[...] If there was a system for encrypting mail between MTAs (like using GPG with DKIM/DMARC type mechanisms for managing keys) then they could display targeted adverts and users get the simplicity of having things just work (GPG is too hard for most people).
That already exists - SMTP over SSL - while good, it doesn't solve any of the problems we are talking about here.
Is there any way to publish the fact that I would prefer to receive mail via SSL? My understanding is that if a hostile party proxies the SMTP session such that the sender thinks that my MTA is incapable of SSL then the sender will happily send it unencrypted. Is there any way for a MUA to specify that a message should be bounced if it can't be sent between MTAs via SSL? -- My Main Blog http://etbe.coker.com.au/ My Documents Blog http://doc.coker.com.au/