On Montag, 28. Januar 2008 Sim Zacks wrote: > Our CEO and CFO are both very concerned with the idea of switching to > IMAP because it would make it simple for the system administrators to > read their email. They aren't as concerned with sniffers and stuff > like that because that would require constant vigil. They are > concerned that someone can open the mysql database (or go into the > dbmailadministrator web front end) and query the database.
How do you currently ensure nobody can read their mail? Your bad sysadmins could 1) remote control their PCs by using a trojan 2) sniff the companies network 3) sniff the internet (which is what all the other bad guys on the planet could easily do, of course) 4) install an alias to get a copy of all CEO mails to another box 5) and a lot of other nice things If your sysadmins are a problem, change them. There will be no way to prevent them from reading your mail, if they really want to - but I believe there are many other threats that are of bigger danger. mfg zmi -- // Michael Monnerie, Ing.BSc ----- http://it-management.at // Tel: 0676/846 914 666 .network.your.ideas. // PGP Key: "curl -s http://zmi.at/zmi.asc | gpg --import" // Fingerprint: AC19 F9D5 36ED CD8A EF38 500E CE14 91F7 1C12 09B4 // Keyserver: www.keyserver.net Key-ID: 1C1209B4
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ DBmail mailing list [email protected] https://mailman.fastxs.nl/mailman/listinfo/dbmail
