Generally a helpful and concise article but the sentence beginning "The style used to specify how to use TLS ..." is awkward. There must be a better description of this concept. Regards, PeterEasthope (talk) 15:45, 29 February 2012 (UTC)
I've deleted the claim that Gmail and Apple's iCloud are the only two major free e-mail providers which implement STARTTLS as of 2011. GMX has supported STARTTLS since at least 2005 as shown by a Debian bugreport specifically showing that STARTTLS is supported by GMX. 220.127.116.11 (talk) 05:01, 26 August 2012 (UTC)
STARTTLS preferred to separate ports?
- These [separate ports for secure versions of services other than HTTP] are no longer recommended, since STARTTLS makes more efficient use of scarce port numbers and allows simpler device configuration.
Someone marked this as citation needed; I think it's actually wrong because, for example, of downgrade attacks where a network adversary would conceal the STARTTLS capability from the client (pretending that the server didn't offer it). In that case, the client might proceed without encryption. But using a separate port will probably tell clients that TLS is required by policy, so a downgrade attack will fail. Schoen (talk) 02:11, 12 March 2013 (UTC)