here is an interesting article about starttls vulnerabilities : https://nostarttls.secvuln.info/
starttls is used in yunohost in particular for mail and xmpp
maybe it would be obvious to remove starttls from yunohost and switch to implicit TLS?
here is an interesting article about starttls vulnerabilities : https://nostarttls.secvuln.info/
starttls is used in yunohost in particular for mail and xmpp
maybe it would be obvious to remove starttls from yunohost and switch to implicit TLS?