Encryption bug in Apple Mail (… or feature?)
When using s/mime encryption, which is nicely integrated in the users keychain, with IMAP configured accounts in mail.app, the app does not encrypt the mail and stores it (e.g. as draft) unencrypted on the server before it has been sent.
An attacker can either read the unencrypted mail, if he has access to the server (sysadmin), or in case the IMAP connection is unencrypted, read the unencrypted message on the nodes/routers.
Please fix this.
Take care & best, lx
Categories: Free Software, Technology Apple, bug, encryption, Mail.app, s/mime, Security, Steve Jobs
this is probably a feature 😉
furthermore it is impossible to read encrypted messages on an iphone 😉