info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
Comcast No Longer Supporting Older Email Security Protocols
87 views
Skip to first unread message
Boris
Oct 5, 2022, 1:45:18 PM10/5/22
to
In the email sent out by Comcast, announcing that some devices/email
clients may be using software that uses TLS 1.1 or lower, will no longer
be supported by Comcast mail.
In that letter, Comcast gives an xfinity email address to which one can
send a test email to see if your email software passes their
requirements. I did, and I pass.
But why does the letter say that one can test up to five times a day?
Here's some of the letter:
"We noticed you're accessing your Comcast.net email through an older
email application or device, such as an older smartphone. Unfortunately,
some older devices, operating systems, and email applications don't
support current security protocols and therefore put your data at risk."
"We'll contact you again before these changes are made. You can check if
your email applications are up to date by sending a test email to
xfinity-...@alerts.xfinity.com up to five times per day. "
clients may be using software that uses TLS 1.1 or lower, will no longer
be supported by Comcast mail.
In that letter, Comcast gives an xfinity email address to which one can
send a test email to see if your email software passes their
requirements. I did, and I pass.
But why does the letter say that one can test up to five times a day?
Here's some of the letter:
"We noticed you're accessing your Comcast.net email through an older
email application or device, such as an older smartphone. Unfortunately,
some older devices, operating systems, and email applications don't
support current security protocols and therefore put your data at risk."
"We'll contact you again before these changes are made. You can check if
your email applications are up to date by sending a test email to
xfinity-...@alerts.xfinity.com up to five times per day. "
Big Al
Oct 5, 2022, 2:11:27 PM10/5/22
to
VanguardLH
Oct 5, 2022, 4:49:38 PM10/5/22
to
probably to ensure there is decent response from the test service rather
than having all their users flood it at the same time while testing an
unusually high count of e-mail clients. Plus, a Comcast account can
have more than one e-mail account: owner account plus up to 5 member
accounts (or maybe it's 5 total for owner+member). If their test server
gets flooded, users would get frustrated in not receiving the response
e-mail for a long time instead of nearly immediately.
SSL was found vulnerable, so it got dropped. SSL 3.0 was the last
version. TLS 1.0 is exactly the same as SSL 3.0, except the handshaking
was changed for TLS 1.0, so SSL 3.0 and TLS 1.0 were made incompatible,
but security was not improved, so TLS 1.0 is just as vulnerable as SSL
3.0. TLS 1.1 came next, and found vulnerable. So, many sites or
services now require TLS 1.2 at a minimum although TLS 1.3 is now
available.
https://en.wikipedia.org/wiki/Transport_Layer_Security#SSL_1.0,_2.0,_and_3.0
https://www.venafi.com/blog/why-its-dangerous-use-outdated-tls-security-protocols
Allodoxaphobia
Oct 5, 2022, 8:56:08 PM10/5/22
to
On Wed, 5 Oct 2022 10:45:17 -0700, Boris wrote:
>
> But why does the letter say that one can test up to five times a day?
Probably because if one needs to fiddle with their environment to
>
> But why does the letter say that one can test up to five times a day?
properly set up a new security protocol to satisfy Comcast,
it never, ever works ok on the first revision.
0 new messages