Yeah, usually... But the default fallback mechanism for "I can't connect via TLS/the certificate doesn't match/is expired/something is wrong" is either to ignore the invalid certificate or fall back to plain text.
It's better that directly sending plaintext but only marginally.
alphafalcon t1_j0tsk7q wrote
Reply to comment by uzlonewolf in Google introduces end-to-end encryption for Gmail on the web by psychothumbs
Yeah, usually... But the default fallback mechanism for "I can't connect via TLS/the certificate doesn't match/is expired/something is wrong" is either to ignore the invalid certificate or fall back to plain text.
It's better that directly sending plaintext but only marginally.