From e736eed61f6b593535aa3099420ca96f5ac4b00d Mon Sep 17 00:00:00 2001
From: RIN67630 <lazlo.lebrun@googlemail.com>
Date: Wed, 4 Sep 2024 19:41:17 +0200
Subject: [PATCH 1/2] Update MQTT.md

Added security warning about unencrypted MQTT communication.
---
 docs/MQTT.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docs/MQTT.md b/docs/MQTT.md
index 176ce87279..837828a5ed 100644
--- a/docs/MQTT.md
+++ b/docs/MQTT.md
@@ -3,6 +3,10 @@
 After you have a working [MQTT broker](https://www.google.com/search?q=setting+up+an+mqtt+broker) you need to configure Tasmota to communicate with it. 
 If you have no knowledge of what MQTT is, you can learn about it from [MQTT Essentials](http://www.hivemq.com/mqtt-essentials/) articles. 
 
+## Warning
+Excepted for ESP2 devices, Tasmota does not provide encrypted MQTT coomunication.
+Unencrypted MQTT should be limited to own LAN, external unencrypted communication is a very serious security flaw, your device can become a malware bot!
+
 ## Configure MQTT 
 If you flashed a precompiled .bin or didn't enter MQTT info in `user_config_override.h` before compiling you have to configure it on your device first.
 

From 1f03073a42a7d58fbb2fbfe6a9feeed7999524df Mon Sep 17 00:00:00 2001
From: s-hadinger <49731213+s-hadinger@users.noreply.github.com>
Date: Wed, 23 Apr 2025 10:28:00 +0200
Subject: [PATCH 2/2] Update MQTT.md

---
 docs/MQTT.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/docs/MQTT.md b/docs/MQTT.md
index 837828a5ed..0f1c62b716 100644
--- a/docs/MQTT.md
+++ b/docs/MQTT.md
@@ -4,8 +4,7 @@ After you have a working [MQTT broker](https://www.google.com/search?q=setting+u
 If you have no knowledge of what MQTT is, you can learn about it from [MQTT Essentials](http://www.hivemq.com/mqtt-essentials/) articles. 
 
 ## Warning
-Excepted for ESP2 devices, Tasmota does not provide encrypted MQTT coomunication.
-Unencrypted MQTT should be limited to own LAN, external unencrypted communication is a very serious security flaw, your device can become a malware bot!
+All ESP32 devices (including all varaiants like `ESP32c<x>` and `ESP32s<x>`) natively support encrypted MQTT over TLS. ESP8266 do not natively support TLS unless you compile your own variant with TLS support. Unencrypted MQTT should be limited to own LAN, external unencrypted communication is a very serious security flaw, your device can become a malware bot!
 
 ## Configure MQTT 
 If you flashed a precompiled .bin or didn't enter MQTT info in `user_config_override.h` before compiling you have to configure it on your device first.