OS VERSION: 184.108.40.206
HARDWARE: Xperia XA2, Xperia 10 ii, Xperia 10 iii
UI LANGUAGE: French
When creating a new email account, which is not known by the database of providers, the default values used for the server protocol are imap, using port 143 and no security, and smtp, using port 25 and no security. This is insecure and should be changed to more robust default values, using ssl and port 993 for imap, using ssl and port 465 for smtp.
Worse, this is also the case when using an address in
@wanadoo.fr address, in which case there is even not the opportunity to review the settings before the final account creation (and i fear that a plain unencrypted connection is done to the server).
STEPS TO REPRODUCE:
- create a new mail account, using a custom address provider (to reproduce, you can safely use a non existing one)
- check that « Connexion sécurisée » (should be something like secure connection in english) is set to « Inutilisé » (unused ?) in both imap and smtp, and ports are 143 and 25
Secure connection should be set to ssl in both cases, and ports should be 993 and 465.
No changes, tested from a freshly flashed device.
Nothing else relevant.