On Wed, Feb 12, 2020 at 11:15:01PM +0100, Björn Persson wrote: > are sent over TLS, but what do they do if your email provider doesn't > support SMTP over TLS? Do they refuse your key in that case? My guess > is that they send the verification email unprotected, and that that's > one reason why they say they're not a certification authority. All CAs support verification via insecure protocols AFAIK because usually the certificate is needed to secure the protocol. What other option would they have? Kind regards Till _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
