Hacker Newsnew | past | comments | ask | show | jobs | submitlogin
Ask HN: Is email without 2FA safe?
3 points by pietro72ohboy on May 2, 2022 | hide | past | favorite | 4 comments
I've been contemplating the idea of moving over my accounts on various services to an email on my own domain (mail@pietro72ohboy.com instead of mail@gmail.com). Since this email will serve as a gateway to accessing (and recovering access if needed) for all services, I'd want it to be reasonably secure. I've tried to stick with services that allow an extra 2FA over the traditional username/password login and I'm currently using fastmail for this.

I'd like to go back to using a service like Migadu that offer a simple, standard mail account accessible through IMAP and SMTP. Would an account secured by a sufficiently powerful password be secure enough? Or is 2FA a must for such accounts.



Unless you're using some encryption mechanism on the body of the email itself email is inherently unsecure due to how it's transferred from server to server. You cannot make any guarantees that mail relays will use tls when transferring messages. You cannot be assured that when the message is in a mail spool that it is encrypted and not viewable by the administrator. When that message is waiting in your local mailbox you cannot be sure that the administrator does not have access to that mailbox.

The only way to know that email is safe and secure is to use some sort of encryption on the message body itself to ensure eyeballs to eyeballs security. Without that there is a massive number of places in the chain that forms email delivery or messages can be viewed and altered with no record of it happening.

So placing two-factor authentication upon your access to the account only provides a layer of security to protect against accessing the account. It does not provide any security or guarantee that the message itself has not been altered or tampered or viewed in some other way.


I think 2FA still has value against all the attackers who aren’t email server admins, like phishers. I think they are a much bigger threat.


Protonmail allows you to protect your account with a second password. So even if someone manages to login with your password, they have to guess another password to get access to your email. I use it, it's very handy.


I'm undecided between Fastmail and Tutanota (which has hardware 2FA) myself. Security wise the latter would be better I guess.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: