Yes but IMO we should be moving toward a world in which TLS is mandatory
for SMTP relay. Clear guidance to implementors
and operators on what TLS versions, cert algorithms, and ciphersuites a
client and server should support, might help us
I don't think that's the problem. I don't see any SMTP TLS failures other
than from spambots.
That sounds good, but I'd like to understand more precisely what you're
I'm looking at my incoming and outgoing mail logs. FWIW, the vast
majority of the outgoing mail goes over TLS. Partly that's because a
whole lot of mail goes to a fairly small set of providers (Google,
Microsoft, Mimecast, etc.) but I see lots of TLS to small mail
servers, too. The non-TLS mail is what you'd expect, small
unsophisiticated mail operators, mostly not in North America.
ietf-smtp mailing list