Join GitHub today
Option to only send encrypted messages to verified devices #2313
I would suggest having this per-user. Primarily because it empowers the user to increase security for their own messages without having to have the necessary room privileges.
Would be nice if this were supported for the entire room as well, but that's a Matrix spec issue too.
Just to confirm: this is very much on our radar, but we're also having to juggle all other issues coughed up by the beta - i.e. the Unknown Inbound Session ID bugs, verifying devices, and giving folks the ability to backup & restore E2E state. It will be coming RSN, and yes, it does pose a serious issue (as do the others).