RSS Feed
Browse by Topic > Security & Reliability
"Heartbleed" is a security vulnerability in OpenSSL (Secure Socket Layer) encryption that was made public on April 8th, 2014. Heartbleed gives read access to the memory of the encryption functions of vulnerable servers, allowing attackers to steal the ...
A cookie is a small file that is sent from a website and stored in a user's web browser when visiting that website. When the user returns to the website, the cookie sends data about previous activity to the website's server. Cookies are used in web...
StartMail uses an enhanced version of the traditional SSL certificate to provide additional assurance that you are safely connected to the actual StartMail.com web site. The presence of an Extended Validation (EV) certificate is indicated by the text "...
In general, you may configure your StartMail account to work with your email client [1]* using the IMAP protocol just one time. If you should change your StartMail account password, your IMAP account configuration will not be affected. However, if ...
IMPORTANT WARNING: If you forget your PGP passphrase, you will not be able to recover it and you will lose access to all previously encrypted messages. If this is the case, you must generate a new PGP key pair [1], to encrypt future messages. Your P...
StartMail uses HTTP Strict Transport Security (often abbreviated as HSTS). HSTS is a security feature that lets a website tell browsers that it should only be communicated with using HTTPS instead of using HTTP. HTTPS (contrary to HTTP) works over s...
StartMail is fully accessible via the Tor (The Onion Router) Network. For more information on Tor, please visit: https://www.torproject.org/ [1] At StartMail, we feel sympathetic towards the Tor project. Tor fulfills an important role in keeping ...
The servers that host StartMail are our property. We own them. We locate our servers in data centers so we can take advantage of the fast and robust network interconnections, electrical redundancy, high availability infrastructure and the physical a...
Choosing a strong password - resistant to guessing and brute-force hacks - is an important component of email security. StartMail will also assess your password's strength for you, and for the sake of your security, passwords deemed "too weak" will not...
Perfect Forward Secrecy (PFS) is an additional protection mechanism that makes our use of Secure Socket Layer (SSL)/Transport Layer Security (TLS) encryption even more secure. SSL/TLS, which protects your StartMail messages by encrypting each message, ...
Your recovery email address is not stored in the secure vault. If you ever lose or forget your password, we will be able to help you by sending a password reset link to your recovery email address. Therefore, the recovery email address must be stored o...
When we got news about the ShellShock bug, also known as Bourne Again or "bash" attack, StartMail immediately upgraded its systems as soon as a patch for the ShellShock Bug became available. This bug is also referred to as the Bourne Again Shell or ...
SSL - or Secure Sockets Layer - is a set of cryptographic protocols used to establish an encrypted link between your computer and StartMail. StartMail uses SSL and a related technology, TLS, to make sure that all of your communications with StartMail -...
This article will provide more information about the kind of encryption StartMail uses. To learn how to get started with StartMail email encryption, please click here [1]. StartMail supports Transport Layer Security (TLS) versions 1.1 and 1.2.. ...
On October 14th, 2014, Google engineers disclosed [1] a vulnerability in an older encryption protocol called SSLv3. Users of older web browsers that use this protocol exclusively, such as Internet Explorer 6, are exposed to possible "man-in-the-middle ...
When you delete an email, there is no artificial delay between when you click delete and when that message is actually deleted from StartMail servers. It's practically instant, so there's no need to worry about StartMail retaining anything you don't wa...
StartMail supports the capability to digitally sign your message to another user using your PGP key pair. Your digital signature serves a similar purpose as a hand-written signature. It authenticates the source of a message. Additionally, it timesta...