S/MIME has been updated. They added optional secure encryption. Insecure encryption still MUST be supported. #efail https://tools.ietf.org/html/rfc8551
Is that to be expected though? what If you want to re-read a 10 year old email?
-
-
it's tricky, I know, you almost have to do something like "we only decrypt old mails with the old standard and not new mails". That's what you get when you wait 15 years to update to somewhat modern crypto.
-
really not trying to defend PGP, but well, they added authentication in the 90s and while still things broke, it was somewhat feasible to say after efail "no more unauth'ed packets". they were in a better situation.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.