WP Mail SMTP: What do the SSL/TLS options mean? [closed]

WP Mail is just a wrapper for configuring WordPress’s PHPMailer (wp-includes/class-phpmailer.php). PHPMailer’s documentation says:

Encryption flavours

There are two “flavours” of transport encryption available for email:

  • “SMTPS”, also referred to as “implicit” because it assumes that you’re going to be using encryption right from the start of the connection. In PHPMailer this mode is selected by setting SMTPSecure=”ssl”, and usually requires Port = 465.
  • “SMTP+STARTTLS”, also referred to as “explicit” because it initially connects insecurely then explicitly asks for the connection to start using encryption. In PHPMailer this mode is selected by setting SMTPSecure=”tls”, and usually requires Port = 587 (defined in RFC6409), though it can work on any port.

So yes it looks like TLS = STARTTLS.

The security issue with STARTTLS is if the client silently connects in the clear if TLS isn’t available. At first glance PHPMailer does not do this:

    if ($tls) {
        if (!$this->smtp->startTLS()) {
            throw new Exception($this->lang('connect_host'));
        }

If you choose encryption=TLS then the $tls flag is set independently of the server reporting STARTTLS, so I think it is secure. ‘TLS if available’ is $SMTPAutoTLS, which defaults to on.

Related Posts:

  1. Disable email notification after change of password
  2. wp_mail and BCC headers
  3. Sending all emails using SMTP
  4. How to get current post ID in Contact Form 7 wpcf7_before_send_mail hook action
  5. Send email when a new post is published [closed]
  6. Email Notifications of new posts to users – suggestions [closed]
  7. How to add usermeta to “Notice of Email Change” email message
  8. Notify commenters about new replies
  9. Send batch of posts as HTML Email?
  10. Is there a plugin that allows a user of your site to get an email from you with an attachment?
  11. Plugin for Sending Email to Readers about New Posts? (besides “Subscribe2 “)
  12. How to bulk send emails
  13. Server-side subscribe by email?
  14. wp_mail() is not working on server
  15. Storing a password for use with a WordPress plugin
  16. A very basic question – how to properly use wp_mail() in a plugin
  17. WordPress plugin for mail subscriptions [closed]
  18. Is there a plugin to record querystring parameters for a page (for customer tracking)? [closed]
  19. Storing Email Account Passwords for SMTP Mailing for a WordPress Plugin
  20. action-scheduler vs wp-background-processing
  21. Easy Digital Downloads (EDD) – Purchase Receipt emails couldn’t be logged
  22. WordPress sending emails continuously. How to stop it?
  23. wp_mail attachment not working
  24. Setting Custom Email From name and email address in wp_email()
  25. how to incude logo in contcat form 7 email [closed]
  26. Check if email address exists front end with AJAX in a plugin
  27. Woocommerce email template customization [closed]
  28. Sending email from inside a plugin using PHP PEAR
  29. Can’t send mails using contact plugin [closed]
  30. Hook into and send mail using WP Mail SMTP type plugin from HTML static front page?
  31. Email Bounce Address
  32. WordPress Registration Email by Role
  33. Get sent emails without email logs
  34. How to send an automated email to the customers when product is added woocommerce
  35. Looking for a way that will collect visitors emails before letting them view the blog posts [closed]
  36. Display encrypted content on my website
  37. Sending HTML emails via wp_mail not working properly
  38. Send email when a portfolio project is updated
  39. Notify comment author upon reply
  40. Sync User to cPanel webmail?
  41. How to pass variables to a function argument using add_action [duplicate]
  42. Is it possible to send blog posts via email to subscribers?
  43. Implementing an “Email this” button?
  44. Send admin an email when a user’s search has no results
  45. Looking for advice for a mail sending plugin
  46. How to check if an email was sent from or originated from a specific plugin?
  47. Plugin to email a post or page to someone
  48. Collecting email addresses via a “beta” sign up form
  49. SMTP Error: Could not authenticate [closed]
  50. Alternate email sending service – eg: AWS SES [closed]
  51. Send email with list of active plugins upon activation/deactivation
  52. WordPress: Add custom add_filter for custom functions
  53. Sending HTML email containing custom fields to site users from WordPress
  54. Getting 400 Error: redirect_uri_mismatch when trying to grant permission to Gmail SMTP plugin
  55. sending different email notification while registration based on user role
  56. Function added to hook “new_to_publish” not executing – custom plugin
  57. Two WooCommerce installations on the same server, one sends customer emails but the other does not
  58. How to add a button to check the emails of my domain?
  59. Contact Form 7 Plugin emails not being received by some accounts
  60. Plugin to send messages to members/lists but not full-blown newsletters
  61. In wordpress how to sent different email separetly when i click on different email ids [closed]
  62. Mass Mail Plugin to Email Specified User Roles [closed]
  63. How can I add user profile fields to my mailpress mailout
  64. plugin for emails to prevent spam but also let mailto working?
  65. Can Postie be used to submit podcasts via email?
  66. WordPress – send digital product with custom email
  67. How to display emails as a post?
  68. How to create a form where you can select multiple recipients, based on a list of website users?
  69. SMTP emails not picking up the correct From name and From email
  70. Changing the Default New User Notification Email
  71. I want to schedule email (date, time is in database->table) wp_schedule_event() not working
  72. How to change a wordress plugin php code in my child’s functions.php file?
  73. Send email when a user registers Rest api
  74. WordPress eMails not working
  75. Getting unknown text in footer of email
  76. How to send custom mail when a user complete a specific form
  77. Do_shortcode before send email content
  78. Use WordPress Site For Email List Functionality
  79. admin-ajax.php returning 0
  80. Plugin sending emails to external addresses, not internal
  81. Get value from an input field and pass into update_meta_data as $meta_value
  82. Cron job emails blank
  83. Form tries to download a file on submit
  84. How can I automatically send an email with an excel file containing submissions for a form rather than an email per submission?
  85. How to customize ‘recurrance’ of’ wp_schedule_event’?
  86. Setup SMTP setting in wordpress
  87. How do I replace the e-mail form to functional e-mail subscription? [closed]
  88. Overwrite CSS of Instaemail plugin popup
  89. Choose User to email when adding a new post?
  90. Automatically send an email to list when blog is updated
  91. How to work email subscribe in WordPress?
  92. Send Processing Order Email from custom payment plugin
  93. Send email notification when meet the condition
  94. Woocommerce Emails not being sent [closed]
  95. WP can’t send newsletters
  96. WordPress isn’t sending welcome email with the password reset
  97. additional fields based on the quantity of products selected
  98. Create a table in custom plugin on the activating it?
  99. How to call plugin path in JS?
  100. ClassLoader.php issues after moving to a new host