root/TODO @ c7904e2c
| a1384f1c | Marc Dequenes | - ban keys from unknow users flooding -> counter, reseted when key added in DB
|
|
- protect against replay (foo resending eavesdropped mail) -> store message IDs, but how to limit to a reasonnable timeframe ?
|
|||
| 8ac6d200 | Marc Dequenes | - protect against intercepted mail with falsified headers (From/Reply-To/... could be tampered to get replies, reply tampered too, and then resent to avoid being detected)
|
|
| 960c259e | Marc Dequenes | - check "protocol" field in "Content-Type" for received signed/encrypted mails
|