top | item 46083770

(no title)

aeturnum | 3 months ago

Email has been updated many times in the last 20 years. All of the major sender authentication protocols (SPF, DKIM, DMARC) were created and deployed over the last 20 years. Email is also famously insecure and lacking a standard way of managing encryption - so the reason you never see updates is because the features signal is changing do not exist in email at all.

discuss

upofadown|3 months ago

SPF, DKIM, DMARC are all about server reputation. They don't count as any sort of update to email and don't affect the protocol. These days regular non E2EE email is as secure as any other messaging protocol that relies on trusted servers. Since it is federated over multiple servers it is better than systems with just one server. You can choose who to trust and can even host it yourself.

Compare with Signal where there is only one allowed server entity and hardly anyone verifies identities making man in the middle attacks trivial.

fylo|3 months ago

Any reference to the trivial mitm attacks which signal has suffered?

qmr|3 months ago

PGP/GNUPG has worked well for me for nearly three decades.

unknown|3 months ago

[deleted]