Hacker News
- Why TLS is better without STARTTLS (2021) https://nostarttls.secvuln.info/ 27 comments
- No Starttls https://nostarttls.secvuln.info/ 22 comments
- Security downgrade with IMAP STARTTLS leads to information leakage https://www.mozilla.org/en-US/security/advisories/mfsa2020-22/#CVE-2020-12398 22 comments
- Email encryption is here – use STARTTLS everywhere https://www.dwheeler.com/blog/2018/07/24/#email-encryption 67 comments
- STARTTLS Everywhere https://starttls-everywhere.org/ 99 comments
- Announcing STARTTLS Everywhere: Securing Hop-To-Hop Email Delivery https://www.eff.org/deeplinks/2018/06/announcing-starttls-everywhere-securing-hop-hop-email-delivery 3 comments
- Measuring SMTP STARTTLS Deployment Quality https://yahoo-security.tumblr.com/post/141495385400/measuring-smtp-starttls-deployment-quality 4 comments
- In a public library, in the USA, SMTP is MITM'd, and STARTTLS is filtered out https://identi.ca/joeyh/note/3b9ykedXTN2TWxeGUuzS3g 3 comments
- STARTTLS Considered Harmful https://www.agwa.name/blog/post/starttls_considered_harmful 39 comments
- The current state of SMTP STARTTLS deployment https://www.facebook.com/notes/protect-the-graph/the-current-state-of-smtp-starttls-deployment/1453015901605223 2 comments
Lobsters
- No STARTTLS https://nostarttls.secvuln.info/ 19 comments email , security
- Unexpected Connection Closure:EOF with gomail after STARTTLS in SMTP Proxy Server https://user-images.githubusercontent.com/60891544/278600392-4d14219b-4a12-404c-bd8a-155c1720dba8.png 13 comments golang
- STARTTLS implementations in email clients & servers plagued by 40+ vulnerabilities https://therecord.media/starttls-implementations-in-email-clients-servers-plagued-by-40-vulnerabilities/ 34 comments crypto
- Why TLS is better without STARTTLS A Security Analysis of STARTTLS in the Email Context https://nostarttls.secvuln.info/ 29 comments netsec
- STARTTLS Everywhere: Lets Encrypt, but for SMTP https://starttls-everywhere.org/ 4 comments technology
- Many government agencies, including the US military, the CIA and the FBI, are leaving the emails of soldiers and government employees potentially in danger of being intercepted by spies and hackers by failing to implement commonly used STARTTLS encryption technology http://motherboard.vice.com/read/how-the-us-military-fails-to-protect-soldiers-emails 25 comments crypto
- Why aren’t more news organizations protecting their e-mail with STARTTLS encryption? https://freedom.press/blog/2015/02/why-arent-more-news-organizations-protecting-e-mail-with-starttls 3 comments crypto
- The current state of SMTP STARTTLS deployment https://www.facebook.com/notes/protect-the-graph/the-current-state-of-smtp-starttls-deployment/1453015901605223 28 comments netsec
- STARTTLS plaintext command injection vulnerability http://www.kb.cert.org/vuls/id/555316 6 comments netsec