Added Security Addendum to README

Signed-off-by: Louis Vallat <louis@louis-vallat.xyz>
This commit is contained in:
Louis Vallat 2022-02-14 19:56:53 +01:00
parent 3c1f7c7496
commit 366f7d4361
No known key found for this signature in database
GPG Key ID: 0C87282F76E61283

View File

@ -33,6 +33,13 @@ borked for 2 minutes once every few months shouldn't be an issue.
Although this is not new, maybe a bit young (from 2012), this technology isn't Although this is not new, maybe a bit young (from 2012), this technology isn't
widely spread. widely spread.
## Security addendum
Although it provides a bit more security, as it prevents MITM attacks from
downgrading your TLS (or disable it all together), I would ***strongly*** recommend
to send sensitive emails **only** using PGP encryption! Plain text emails are
privacy nightmares!
## References and links ## References and links
- Article from Abyss Project: [link](https://www.abyssproject.net/2016/09/creer-utiliser-enregistrements-tlsa-dane/) - Article from Abyss Project: [link](https://www.abyssproject.net/2016/09/creer-utiliser-enregistrements-tlsa-dane/)