I would like to draw your attention to the fact that some well known free-mail service provider do not encrypt emails sent via web browser.
What have I done? I have logged onto my free-mail account and sniffed my own outgoing network traffic while sending test-mails.
I didn’t know that any free-mail provider exchange data in plain text, although they make a lot of advertising 😉
Investigated free-mail provider: Web.de Freemail, GMX Freemail, Yahoo Mail.
You can check your free-mail provider with a traffic analyzer (e.g. wireshark).
Amongst others, you can see that following information were sent in plaintext to its destination at port http\80:
Here, at frame 8 you can also see sender (name=“from“) and receiver(name=“to“) in plaintext. Further on, reassembled in frame 9…
… you can have a look at its subject „SecretSubjectGMX“ and its content „SecretMessageGMXSecretMessageGMXSecretMessageGMX…“.
Protocols: TCP and HTTP.
Maybe there are some settings, were I can enable encryption, if disabled?
Usually, labels like „SSL Login“, „Secured Login“, etc. applies to the login process; and in very few cases to the transmission process also.
Be aware that everybody could read those „plain texted“ transmissions.