external/mailinabox
1
0
Форк 0
дзеркало https://github.com/mail-in-a-box/mailinabox.git синхронізовано 2026-03-31 21:17:23 +02:00
Код Задачі Релізи Вікі Активність

tweak security.md

Переглянути джерело
Цей коміт міститься в:
Joshua Tauberer
2015-07-09 13:30:25 -04:00
джерело 34b7638342
коміт d08a3095a9
1 змінених файлів з 5 додано та 2 видалено
Завантажити патч Завантажити файл різниці Розгорнути всі файли Згорнути всі файли

7
security.md
Переглянути файл

@@ -17,8 +17,11 @@ The primary goal of Mail-in-a-Box is to make deploying a good mail server easy,
On the other hand, we do assume that adversaries are performing passive surveillance and, possibly, active man-in-the-middle attacks. And so: On the other hand, we do assume that adversaries are performing passive surveillance and, possibly, active man-in-the-middle attacks. And so:
* User credentials are always sent through SSH/TLS, never in the clear. * User credentials are always sent through SSH/TLS, never in the clear, with modern TLS settings.
* Outbound mail is sent with the highest level of TLS possible (more on that below). * Outbound mail is sent with the highest level of TLS possible.
* The box advertises its support for [DANE TLSA](https://en.wikipedia.org/wiki/DNS-based_Authentication_of_Named_Entities), when DNSSEC is enabled at the domain name registrar, so that inbound mail is more likely to be transmitted securely.
Additional details follow.
User Credentials User Credentials
---------------- ----------------