{"id":322,"date":"2019-01-01T16:23:18","date_gmt":"2019-01-01T16:23:18","guid":{"rendered":"http:\/\/localhost\/sov03\/?p=322"},"modified":"2019-01-01T16:23:18","modified_gmt":"2019-01-01T16:23:18","slug":"starttls-everywhere","status":"publish","type":"post","link":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/","title":{"rendered":"STARTTLS Everywhere"},"content":{"rendered":"<p>Email has multiple security issues. For instance, it relies on SMTP (Simple Mail Transfer Protocol) which generally does not use encryption or authentication. Just as your postal carrier can read what you write on a postcard, email services and anyone who\u2019s watching email traffic (NSA, hackers), can read email content.<\/p>\n<p>STARTTLS is an addition to SMTP that can enable hop-to-hop encryption. This is encryption in transit.\u00a0 Note, this is not end-to-end encryption. Email providers and receivers can still read the contents before and after sending it, but it should make content unreadable to anyone watching in between. However, since most email servers do not use certificate validation, a hacker can impersonate the sending or receiving servers and bypass encryption.<\/p>\n<p>Also, since STARTTLS usually requires sending an unencrypted request to the receiving server, hackers can block this request to bypass encryption.<\/p>\n<p>To address this problem, the <a href=\"https:\/\/www.eff.org\/deeplinks\/2018\/06\/announcing-starttls-everywhere-securing-hop-hop-email-delivery\">Electronic Frontier Foundation<\/a> (EFF) has created a project called <a href=\"https:\/\/www.starttls-everywhere.org\/about\/\">STARTTLS Everywhere<\/a>.<\/p>\n<p>It provides a way for participating email service providers to enable\u00a0 STARTTLS without sending an unencrypted request. The challenge is getting all mail servers to participate. Email server managers can learn more about STARTTLS Everywhere at\u00a0https:\/\/www.starttls-everywhere.org\/about\/<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Email has multiple security issues. For instance, it relies on SMTP (Simple Mail Transfer Protocol) which generally does not use encryption or authentication. Just as your postal carrier can read what you write on a postcard, email services and anyone who\u2019s watching email traffic (NSA, hackers), can read email content. STARTTLS is an addition to [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[3,7],"tags":[18,25,27],"class_list":["post-322","post","type-post","status-publish","format-standard","hentry","category-email","category-security","tag-email","tag-security","tag-starttls"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>STARTTLS Everywhere - s-oneill.com<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"STARTTLS Everywhere - s-oneill.com\" \/>\n<meta property=\"og:description\" content=\"Email has multiple security issues. For instance, it relies on SMTP (Simple Mail Transfer Protocol) which generally does not use encryption or authentication. Just as your postal carrier can read what you write on a postcard, email services and anyone who\u2019s watching email traffic (NSA, hackers), can read email content. STARTTLS is an addition to [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/\" \/>\n<meta property=\"og:site_name\" content=\"s-oneill.com\" \/>\n<meta property=\"article:published_time\" content=\"2019-01-01T16:23:18+00:00\" \/>\n<meta name=\"author\" content=\"sean o\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"sean o\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/\"},\"author\":{\"name\":\"sean o\",\"@id\":\"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/a9217b5797251a243dfd504d7ad7d00a\"},\"headline\":\"STARTTLS Everywhere\",\"datePublished\":\"2019-01-01T16:23:18+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/\"},\"wordCount\":200,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/a9217b5797251a243dfd504d7ad7d00a\"},\"keywords\":[\"Email\",\"Security\",\"STARTTLS\"],\"articleSection\":[\"Email\",\"Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/\",\"url\":\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/\",\"name\":\"STARTTLS Everywhere - s-oneill.com\",\"isPartOf\":{\"@id\":\"https:\/\/s-oneill.com\/sov02\/#website\"},\"datePublished\":\"2019-01-01T16:23:18+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/s-oneill.com\/sov02\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"STARTTLS Everywhere\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/s-oneill.com\/sov02\/#website\",\"url\":\"https:\/\/s-oneill.com\/sov02\/\",\"name\":\"s-oneill.com\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/a9217b5797251a243dfd504d7ad7d00a\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/s-oneill.com\/sov02\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/a9217b5797251a243dfd504d7ad7d00a\",\"name\":\"sean o\",\"logo\":{\"@id\":\"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/image\/\"},\"description\":\"Web dev over 15 years.\",\"sameAs\":[\"http:\/\/s-oneill.com\"],\"url\":\"https:\/\/s-oneill.com\/sov02\/author\/s-oneill\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"STARTTLS Everywhere - s-oneill.com","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/","og_locale":"en_US","og_type":"article","og_title":"STARTTLS Everywhere - s-oneill.com","og_description":"Email has multiple security issues. For instance, it relies on SMTP (Simple Mail Transfer Protocol) which generally does not use encryption or authentication. Just as your postal carrier can read what you write on a postcard, email services and anyone who\u2019s watching email traffic (NSA, hackers), can read email content. STARTTLS is an addition to [&hellip;]","og_url":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/","og_site_name":"s-oneill.com","article_published_time":"2019-01-01T16:23:18+00:00","author":"sean o","twitter_card":"summary_large_image","twitter_misc":{"Written by":"sean o","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/#article","isPartOf":{"@id":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/"},"author":{"name":"sean o","@id":"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/a9217b5797251a243dfd504d7ad7d00a"},"headline":"STARTTLS Everywhere","datePublished":"2019-01-01T16:23:18+00:00","mainEntityOfPage":{"@id":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/"},"wordCount":200,"commentCount":0,"publisher":{"@id":"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/a9217b5797251a243dfd504d7ad7d00a"},"keywords":["Email","Security","STARTTLS"],"articleSection":["Email","Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/","url":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/","name":"STARTTLS Everywhere - s-oneill.com","isPartOf":{"@id":"https:\/\/s-oneill.com\/sov02\/#website"},"datePublished":"2019-01-01T16:23:18+00:00","breadcrumb":{"@id":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/s-oneill.com\/sov02\/starttls-everywhere\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/s-oneill.com\/sov02\/"},{"@type":"ListItem","position":2,"name":"STARTTLS Everywhere"}]},{"@type":"WebSite","@id":"https:\/\/s-oneill.com\/sov02\/#website","url":"https:\/\/s-oneill.com\/sov02\/","name":"s-oneill.com","description":"","publisher":{"@id":"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/a9217b5797251a243dfd504d7ad7d00a"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/s-oneill.com\/sov02\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/a9217b5797251a243dfd504d7ad7d00a","name":"sean o","logo":{"@id":"https:\/\/s-oneill.com\/sov02\/#\/schema\/person\/image\/"},"description":"Web dev over 15 years.","sameAs":["http:\/\/s-oneill.com"],"url":"https:\/\/s-oneill.com\/sov02\/author\/s-oneill\/"}]}},"_links":{"self":[{"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/posts\/322","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/comments?post=322"}],"version-history":[{"count":0,"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/posts\/322\/revisions"}],"wp:attachment":[{"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/media?parent=322"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/categories?post=322"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/s-oneill.com\/sov02\/wp-json\/wp\/v2\/tags?post=322"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}