Due to several vulnerabilities in STARTTLS implementations, resp. generic design flaws, we took the opportunity to update the email compartement here. What has been done?
- Re-enabled port 465 (Submission w/ implicit TLS)
- Disabled TLS 1.0 and TLS 1.1 for SMTP/IMAP
- Updated the email client configuration page
Note that we used port 587 with enforced TLS encryption before. STARTTLS was actually never used here.
What does this mean for me?
Update your email client config.