On February 15th, I had the great pleasure of being a guest on RunAs Radio. I joined host Richard Campbell to discuss email transport security; including:
- Introductions
- Coauthoring Office 365 for IT Pros 8th Edition
- Clarifying the acronym soup
- Collecting all 11 RunAs Radio mugs
- Where is Exchange vNext?
- What happens to mail relay if we eliminate our last on-prem Exchange Server?
- How to make email transport more secure
- Forced TLS vs. Opportunistic TLS
- DANE for SMTP (DNS Authentication of Named Entities)
- MTA-STS (Message Transport Agent – Strict Transport Security)
- DANE versus MTA-STS versus Forced TLS
- How to make individual messages more secure
- Should we use S/MIME?
- Need for Office 365 Message Encryption in addition to transport layer security (TLS)
- Office 365 Message Encryption versus Advanced Message Encryption
- Challenges of Multi-Factor Authentication (“MFA”)
- M365 Maps by Aaron Dinnage
- Domains that do not send email should have Sender Policy Framework (SPF) records
- Homoglyph attacks
- Closing thoughts
Opinion change: Since recording, I think that even if the MTA-STS TXT record was victim to a man-in-the-middle attack it probably would not be much of an issue. If the bad actor changed the ID in the TXT it would simply tell the sender to pull a new policy from a website the recipient owns and controls. As mentioned in the podcast, I believe DANE is the more secure solution. Be sure to consult with your security team about which solution best suits the needs of your organization.
Listen to the podcast
(Originally posted at http://runasradio.com/Shows/Show/818)
What is the RunAs Radio podcast?
To quote Richard:
RunAs Radio was launched on April 11, 2007, with a nod from its sister show, .NET Rocks!. Since then, RunasRadio has had over 400 episodes featuring hundreds of guests from the IT world. A new episode comes out on Wednesday every week, features a guest expert, and focuses on relevant topics in the IT field.
RunAs RadioSubscribe to the RunAs Radio podcast via Spotify, iTunes, or directly via their website. Also, you can download Episode 818 as an MP3. Be sure to follow RunAs Radio on Twitter, Facebook & LinkedIn.
Recent podcasts
On the Line with Cohesity #44. I join host Theresa Miller to discuss Microsoft Viva, the new employee experience during the pandemic, the evolution of email security, Windows 11, and the benefits of the Windows and Office Insider programs. Click here to listen
MSP Unplugged Podcast – Office 365 Tips. I join host Jeff Halash to discuss the benefits of an Exchange hybrid migration, Exchange Server vNext, the M365 Apps beta channel, dark mode in Word, syncing versus backups, and much, much more. Click here to listen
RunAs Radio #745 – Exchange Server vNext announced. I join host Richard Campbell to discuss several hot topics for Exchange and Office 365, including Exchange vNext, the deprecation of basic auth in Office 365, and DANE for SMTP. Click here to listen
Need a guest speaker?
Looking for a guest speaker for your podcast? Drop me an email at info@supertekboy.com.
What tips do you have for Office 365? Drop a comment below or join the conversation on Twitter @SuperTekBoy.
Leave a Reply