I suggest you ...

Display the SSL/STARTTLS cypher, protocol etc

Given that we just had a SSLv3 issue, I think it would be helpful if each mail can display the SSL/STARTTLS status, cypher, protocol etc with which the mail was sent. Google mail does this for example in the received lines (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128). Maybe something like this could be displayed as additional data for each mail.

1 vote
Vote
Sign in
(thinking…)
Password icon
Signed in as (Sign out)
You have left! (?) (thinking…)
Alexander Lehmann shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →
declined  ·  AdminMailtrap (Mailtrap, Mailtrap) responded  · 

Hello, Alexander.

We show emails “as is” and modification of user emails can influence on debugging process of our customers. To get info about SSL/STARTTLS you can by openssl application:

openssl s_client -starttls smtp -connect mailtrap.io:2525 -tls1 -crlf

New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : DHE-RSA-AES256-SHA
Session-ID: 10F274DAF334A1FD0AC7F818A9F1CEF275A4952FAA43EB281DBFEB4333F5DD8F

2 comments

Sign in
(thinking…)
Password icon
Signed in as (Sign out)
Submitting...
  • Issa commented  ·   ·  Flag as inappropriate

    We'd also like to see the authentication method, if any, that was used to transport the email to mailtrap. In particular, we want to ensure that our configuration is correct and that mailtrap did indeed receive the email using SSL/TSL.

  • Alexander Lehmann commented  ·   ·  Flag as inappropriate

    Yes I know, I was considering the possibility to verify that a client chooses the correct cypther, I am not so much concerned with the server in this case.
    I could do the same with the fakesmtp open source server, but that doesn't support tls currently :-(

Feedback and Knowledge Base