-
Notifications
You must be signed in to change notification settings - Fork 175
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
550 5.7.1 TLS required by recipient #757
Comments
+1 for this, some of our clients' mail server are still using plain transfer which we have no control over it. |
Some more feedback: Firefox Relay failed to relay an Activation Email when trying to register a new account in the Linux Mint Forum (https://forums.linuxmint.com/). The site admin provided me with this feedback:
I've been using Firefox Relay successfully and with great results so far, so I'd like to take the chance and thank you very much to the team maintaining this service. It would help a lot, for us technical users and especially for non-technical ones, if this issue could be ironed out (as the main problem this causes is that new registrations typically cannot confirm the email address because the email is not being relayed) |
I tried relaxing this requirement on my local setup and it works. But, I'm also looking for a way that we can detect if the SMTP connection made to SES was over TLS. (And if it wasn't, we may want to add a warning-like indicator to say something like "This email may have been sent over an unencrypted channel.") Some articles[1] suggest that the Still digging into this ... |
I want to test how much web-compat will improve when this problem is solved, so I retested my year old research. 1: The result of excluding websites that cannot be registered by email, global websites like google, duplicates, from the top 50.
Email encryption in transit
3: |
Wow thanks for all that detailed info! We're working with AWS to see if we can get some indicator whether or not TLS was used to deliver the email to Relay. |
Just out of curiosity, how about the deprecated version of TLS? Should Relay also add another warning-like indicator if possible? |
Cleaning up old issues & tickets. This is done now. See https://github.com/mozilla/fx-private-relay/blob/main/docs/adr/0001-optional-tls-for-incoming-smtp.md#decision-outcome for details. |
I sent test emails to
myalias@relay.firefox.com
by using four Japanese email services, but every email were undelivered.One service returned the code
5.1.1 User Unknown
and the other three services returned550 5.7.1 TLS required by recipient
.If Firefox Relay requires senders to use TLS, it will be quite inconvenient in Japan. I'm getting a lot of emails marked as "red (no encryption)" in my Gmail client, and I don't know if it's related, but Firefox Relay is not able to receive emails from many Japanese web services.
The text was updated successfully, but these errors were encountered: