Page MenuHomePhabricator

Document that disabling "metamta.one-mail-per-recipient" leaks recipients for "Must Encrypt"
ClosedPublic

Authored by epriestley on Feb 7 2018, 11:52 AM.
Tags
None
Referenced Files
F12833415: D19014.id45610.diff
Thu, Mar 28, 2:03 PM
Unknown Object (File)
Sat, Mar 23, 5:03 AM
Unknown Object (File)
Wed, Mar 13, 2:12 PM
Unknown Object (File)
Feb 15 2024, 10:19 PM
Unknown Object (File)
Jan 5 2024, 10:41 PM
Unknown Object (File)
Dec 23 2023, 12:03 AM
Unknown Object (File)
Dec 21 2023, 11:16 PM
Unknown Object (File)
Dec 4 2023, 5:02 AM
Subscribers
None

Details

Summary

Depends on D19013. Ref T13053. When mail is marked "Must Encrypt", we normally do not include recipient information.

However, when metamta.one-mail-per-recipient is disabled, the recipient list will leak in the "To" and "Cc" headers. This interaction is probably not very surprising, but document it explicitly for completeness.

(Also use "Mail messages" instead of "Mails".)

Test Plan

Read documentation in the "Config" application.

Diff Detail

Repository
rP Phabricator
Lint
Lint Not Applicable
Unit
Tests Not Applicable