<div dir="ltr"><div class="gmail_default" style="font-size:small"><br></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, May 15, 2018 at 8:59 PM, Ben Bucksch <span dir="ltr"><<a href="mailto:ben.bucksch@beonex.com" target="_blank">ben.bucksch@beonex.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div text="#000000" bgcolor="#FFFFFF">
<div class="m_7354615037162049205moz-cite-prefix">Nomis101 🐝 wrote on 16.05.18 01:31:<br>
</div><span class="">
<blockquote type="cite">
<pre>I assume the S/MIME implementation is affected from Efail? Is this a
serious issue for all Thunderbird users who are relying on S/MIME (and
sending HTML emails)?</pre>
</blockquote>
<blockquote type="cite">
<pre><a class="m_7354615037162049205moz-txt-link-freetext" href="https://efail.de" target="_blank">https://efail.de</a></pre>
</blockquote>
<p><br>
</p>
</span><p>Yes.</p>
<p>That said, the attack is an active MITM attack. The attacker
needs to modify your emails. You can also detect it. So, it's a
crude attack from an attacker's viewpoint.</p>
<p>Good news is that it's simple to mitigate. Simply enable View |
Message Body as | Simple HTML, and the attack will no longer work.
This feature neutralizes the attack in 2 different ways. If
security is important to you, you should enable that anyways, as
it neutralizes whole classes of attacks.</p><span class="HOEnZb"><font color="#888888">
<p>Ben</p></font></span></div></blockquote><div><br></div><div><div class="gmail_default" style="font-size:small">No. That is not the way to address a security issue. </div><div class="gmail_default" style="font-size:small"><br></div><div class="gmail_default" style="font-size:small">Products have to ship in a secure state to be considered secure. If that is the setting that is secure, that should be enforced in code.</div><div class="gmail_default" style="font-size:small"><br></div><div class="gmail_default" style="font-size:small">There is no reason to ever split a HTML body across MIME boundaries and I cannot believe any existing mail client does anything close. So the obvious fix is to make it a requirement that the HTML be all in one MIME part.</div><div class="gmail_default" style="font-size:small"><br></div><br></div><div><div class="gmail_default" style="font-size:small">The Thunderbird S/MIME implementation is utterly horrid. configuring TBird to use certs was a 20 minute process last time I cared to try. And none of that is necessary. </div><div class="gmail_default" style="font-size:small"><br></div><div class="gmail_default" style="font-size:small">There are current discussions on how to make S/MIME fit for use. I think it very likely that we will see something like ACME emerge but for SMTP and that there will be free certificate providers.</div><br></div></div></div></div>