Mailfence DMARC enforcement strategy
We have taken many steps to protect our users from common attacks such as spoofing or phishing. However, such emails might still find their way to your inbox. While we do…
Category: Security
Welcome to the Security archives of the Mailfence Blog.
Announcement: Mailfence will stop support for TLS 1.0 and 1.1 starting June 2nd, 2020
TLS is a protocol that encrypts traffic between a client program and the server. It also ensures that the software client is talking to the right server. Protocols are continuously...
Avoid email vendor lock-in at all costs
What happens when you would like to change the supplier that has your private email data on its servers? Is it possible to get your data back? In the following...
Why you need a private email service now
You probably know someone or have heard a really scary case of hacking or scamming. What you probably do not know however is that more than 80% of all successful...
Mailfence is not impacted by OpenPGP signature spoofing vulnerabilities
New vulnerabilities in many OpenPGP and S/MIME enabled email clients were announced on 2019-04-30. These signature spoofing vulnerabilities exploit weaknesses in the way OpenPGP signatures are verified by email clients...
Encryption Backdoors: Do not work!
Some background knowledge on Encryption Backdoors Certain events have led to renewed calls from governments and law enforcement for more sophisticated tools for monitoring suspects. One idea that has received renewed attention...
Email Headers: How to read and use message headers
This blogpost will explain how to read and understand the email header which travels with every email. It contains details about the sender, taken route and the receiver. Use this...
Mailfence is not impacted by Efail vulnerabilities
New vulnerabilities in many OpenPGP and S/MIME enabled email clients were announced yesterday. These “Efail” vulnerabilities have attracted a lot of attention in the media. As per our analysis, Mailfence...
OpenPGP, S/MIME, Secure Message Escrow: Which E2E encryption is best?
From SMTP to OpenPGP, S/MIME and Secure Message Escrow Emails have been the epicenter of online communication for decades now. Unfortunately the underlying protocol called SMTP (Simple Mail Transfer Protocol),...
OpenPGP digital signature best practices
In a recent post, we discussed the OpenPGP encryption best practices. Digital signatures on the other hand are also a vital part of OpenPGP which gets used both by advanced and entry level users....