search

gjedeer / paranoia

Paranoia add-on for Thunderbird. See who is reading your emails.
GNU General Public License v2.0
34 stars 9 forks source link

Add unknown type for IMAP connections #16

Closed juliusknorr closed 8 years ago

juliusknorr commented 8 years ago

I use fetchmail to get emails from an external account. The connection is using SSL, but by now paranoia rates the connection as bad.

Unfortunately, there is no information in the header, whether SSL is used or not:

Received: from gmail-imap.l.google.com [2a00:1450:400c:c04::6d]
    by mx.example.com with IMAP (fetchmail-6.3.26)
    for <example@example.com> (single-drop); Sun, 21 Feb 2016 16:35:02 +0100 (CET)

I'm not really sure how to handle this kind of connections, so this pr is just an idea.

It creates a new category besides local/secure/insecure connections. Matching the IMAP protocol counts as an unknown connection and only increases the unencryptedLocal counter, so the rating is not influenced by that.

gjedeer commented 8 years ago

It sucks that fetchmail doesn't distinguish between IMAP and IMAPS when adding a header. Maybe you could send a patch to them to send different headers if encryption is on or off

https://gitlab.com/fetchmail/fetchmail/blob/legacy_64/transact.c#L1224

I like your solution - just ignore this connection.