Are iOS native email clients MITM-free?

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Nokia smartphones used to silently route all incoming and outgoing email
through Nokia's server farm, even if the user had configured an encrypted
connection to his or her corporate email servers.

Has anyone investigated how iOS works in that respect? For instance, when
the user sets up the native iPhone email client to connect to a given MSA
and a given IMAP server, does the iPhone actually do that (like normal
email client software does), or does it connect through Apple or through a
third party?

If you have an iOS device, the MSA part is easy to check by looking at the
'Received:' headers, but finding out how IMAP mail retrieval works would
additionally require access to the IMAP server logs.

Crossposted; follow-ups set to comp.mail.misc.

Thor Kottelin

Site Timeline