Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> provided they don't use cipher modes that provide forward secrecy

They use a PFS cipher spec: http://googleonlinesecurity.blogspot.com/2011/11/protecting-...



For HTTPS. I will bet you they don't use perfect forward secrecy for TLS with SMTP traffic. Not because they don't want to , but because it likely isn't supported for a huge set of the servers they connect to. A large number SSL terminators/ accelerators that e.g Microsoft uses, don't likely support it and who knows about other stuff.


They do use PFS for TLS with SMTP traffic when the server on the other end supports it.




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: