Skip to content
This repository has been archived by the owner on Nov 28, 2024. It is now read-only.

[SECURITY] Option to enforce STARTTLS #23

Closed
sfllaw opened this issue Feb 26, 2018 · 5 comments
Closed

[SECURITY] Option to enforce STARTTLS #23

sfllaw opened this issue Feb 26, 2018 · 5 comments

Comments

@sfllaw
Copy link

sfllaw commented Feb 26, 2018
edited
Loading

mail/smtp.go

Lines 98 to 105 in 1e5036a

if !d.SSL {
if ok, _ := c.Extension("STARTTLS"); ok {
if err := c.StartTLS(d.tlsConfig()); err != nil {
c.Close()
return nil, err
}
}
}

This code only tries to upgrade to a TLS connection if the server reports that it supports the STARTTLS extension. If an attacker intercepts the SMTP connection and responds that the extension is unknown, then they can prevent TLS from being turned on.

It would be backwards incompatible to expect STARTTLS by default, but we can make an option that would enforce a STARTTLS connection.

Of course, if the connection is already protected by SSL, then STARTTLS is unnecessary.
@cryptix
Copy link

cryptix commented Feb 26, 2018

we can make an option that would enforce a STARTTLS connection.

+1 - would like to see this as well.

@ivy
Copy link

ivy commented Feb 27, 2018
edited
Loading

@sfllaw Thanks for opening this issue. I take security very seriously and would love to see improvements in the way go-mail handles secure communication and authentication. With that in mind, I'm not sure if you've already seen this, but there is a Dialer.SSL option which enforces SSL/TLS. If security is a major concern, this is almost certainly the preferred method over STARTTLS.

I'm curious if you've encountered a case where STARTTLS was your only option? I'm concerned that an additional option will only add confusion and make a misconfiguration more likely. If anything, it may be a good idea for us to improve our documentation on what options are available for SSL/TLS negotiation.

Edit: Clarifying that Dialer.SSL enforces encryption.

@sfllaw
Copy link
Author

sfllaw commented Feb 27, 2018
edited
Loading

@ivy Dialer.SSL is only for supporting the deprecated SMTPS protocol, right? STARTTLS is equivalently as secure, as long as the library doesn't fallback to unencrypted SMTP. (Both SMTPS and STARTTLS are vulnerable to a DNS attack.)

I have run into cases where the remote server doesn't support SMTPS, because the legacy 465 port is not open.

I recommend we create a new Dialer.RequireStartTLS enum that defaults to Opportunistic TLS. The reason why we want an enum is that we want to support DANE in the future.

@sfllaw sfllaw mentioned this issue Feb 28, 2018
Closed
@ivy
Copy link

ivy commented Feb 28, 2018

@sfllaw Thanks for clarifying. I wasn't aware that SMTPS was a deprecated protocol, that changes everything. 😅

I'll review your PR shortly.

@ivy
Copy link

ivy commented Mar 1, 2018
edited
Loading

A fix was merged in b93a540.

@ivy ivy closed this as completed Mar 1, 2018
diamondburned pushed a commit to diamondburned/gomail that referenced this issue Aug 21, 2022
@pior
Merge pull request go-mail#23 from Shopify/update-go-version
6897a5a 
Update Go versions / refresh linters
@hsluoyz hsluoyz mentioned this issue Sep 3, 2022
Closed
@danerubado-wk danerubado-wk mentioned this issue May 8, 2024
Open
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@cryptix @sfllaw @ivy