<div>
Any messages that Gmail users send or receive from email providers that don't support TLS encryption will be flagged with a tiny unlocked padlock icon and that error. Specifically, either one of below may have cause this red icon to appear.<br />
1. Incoming messages that didn’t use TLS.<br />
2. Gmail will also show when you’re sending messages to services that don’t use TLS when accepting mail.<br />
3. Encryption hasn't worked for a certain email provider in the past<br />
4. Gmail isn't directly sending the message. For example, this icon might show up if you've set up a custom domain name, such as name@yourdomain.com.<br />
<br />
It may be one of first two reasons (1 or 2) &nbsp; for the different domain mentioned. In this case, encrypting 100% of all email on the Internet requires the cooperation of all online mail providers.<br />
<br />
The other two (3 or 4) are wrongly tagged. So it is false positive as acknowledged.<br />
<a href="https://support.google.com/mail/answer/7039474" rel="ugc nofollow">https://support.google.com/mail/answer/7039474</a><br />
<br />
Can check the email header from more info on the a/m scenario to identify which is the case.
</div>


<div>
Hi LVL 65,<br />
<br />
Both domains are on the same mailserver, and uses TLS, when available.<br />
TLS was enabled on the server long time ago, and therefore, at the same time for both domains.<br />
<br />
How will Gmail, know if a domain uses TLS, the open padlock appears in a split-second, even on a domain, that I have never send to before.<br />
<br />
What headers are we talking about to or from Gmail?<br />
<br />
/Jan
</div>


<div>
Google does it by checking past records which probabky may not be updated if &nbsp;that domain is already having to support TLS.<br />
<br />
Past messages sent to the recipient's domain are used to predict whether the message you're sending won't be reliably encrypted. See this and you can try testing out the domain - 
<blockquote>
<br />
What is being counted in this report?<br />
<br />
We count message recipients, not SMTP connections. &nbsp;We don’t count emails our systems flag as spam. &nbsp;We don’t count inbound messages from hosts whose forward or reverse DNS is missing or inconsistent. &nbsp;This is to ensure that inbound messages can be meaningfully attributed, since a message sender can assert any “From” address that he wants.
</blockquote>
<a href="https://transparencyreport.google.com/safer-email/overview" rel="ugc">https://transparencyreport.google.com/safer-email/overview</a><br />
<br />
The mail has a header details which it traces the different mail servers before it is delivered to your inbox. See example.<br />
<a href="https://community.letsencrypt.org/t/how-to-meet-gmails-new-2016-email-tls-requirement-red-lock/28097/2" rel="ugc">https://community.letsencrypt.org/t/how-to-meet-gmails-new-2016-email-tls-requirement-red-lock/28097/2</a>
</div>


<div>
Hi LVL 65,<br />
<br />
The headers looks like this:<br />
Received: from gn35.gullestrupnet.dk (gn35.gullestrupnet.dk. [89.249.3.135])<br />
&nbsp; &nbsp; &nbsp; &nbsp; by mx.google.com with ESMTPS id z64si2164808wmc.261.2017.1<wbr />1.16.21.53<wbr />.44<br />
&nbsp; &nbsp; &nbsp; &nbsp; for &lt;gullestrupnet.jb@gmail.co<wbr />m&gt;<br />
&nbsp; &nbsp; &nbsp; &nbsp; (version=TLS1_2 cipher=ECDHE-RSA-AES128-SH<wbr />A bits=128/128);<br />
&nbsp; &nbsp; &nbsp; &nbsp; Thu, 16 Nov 2017 21:53:44 -0800 (PST)<br />
<br />
So if I understand you right, it's send with TLS, and it's just a matter of time, before Gmail has received enough, to change it's valuation from usafe to safe?<br />
<br />
/Jan
</div>


<div>
<div class="content wysiwyg-content">
When I send fra a Gmail to some domains, I get the warning: Some recipients use services that don't support encryption<br />
<br />
I have 2 different domains. On the same mailserver, with the same setup, but on one domain I get this warning, on the other domain i don't.<br />
<br />
Any idea what causes this warning, and how to resolve it?<br />
<br />
Google does not give much help.<br />
<br />
/Jan
</div>
</div>


When I send fra a Gmail to some domains, I get the warning: Some recipients use services that don't support encryption

I have 2 different domains. On the same mailserver, with the same setup, but on one domain I get this warning, on the other domain i don't.

Any idea what causes this warning, and how to resolve it?

Google does not give much help.

/Jan

Warning in Gmail: &quot;Some recipients use services that don't support encryption&quot;

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. In an encryption scheme, the intended communication information or message, referred to as plaintext, is encrypted using an encryption algorithm, generating ciphertext that can only be read if decrypted. For technical reasons, an encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. An authorized recipient can easily decrypt the message with the key provided by the originator to recipients, but not to unauthorized interceptors.

Encryption

Google is an American multinational technology company specializing in Internet-related services and products that include online advertising technologies, search, cloud computing, software, and hardware.

Warning in Gmail: &quot;Some recipients use services that don't support encryption&quot;

Warning in Gmail: "Some recipients use services that don't support encryption"