Craig,
As you know SMTP is not designed for content security. To protect the
content of the message one would have to encrypt the content of the message
via PGP or another tool. In this case the message content would not be
filtered by Declude as they wont be able to unencrypt the body contents.
However, the headers are not encrypted so RBL lookup's will still be
effective.
On a client I consulted for between them and thier lawyers we implemented
TLS but for this to work both sides need to support it and it only protects
the contents being transported. On the remote end after the TLS transport
is done it goes back to being clear text.
In general when this question is asked I always explain that smtp is in
clear text and it should be assumed that anything in email is readable by
someone at some point. The other part they need to know is that from time
to time we do what we call "spam blitzes". This is when we make a copy of
all messages going through the system to determine how much spam is getting
through or not getting through. All of this needs to be clearly spelled our
and communicated to the customers so they understand this.
Darrell
-------------------------------------------
Check out http://www.invariantsystems.com for utilities for Declude, Imail,
mxGuard, and ORF. IMail/Declude Overflow Queue Monitoring, SURBL/URI
integration, MRTG Integration, and Log Parsers.
Craig Edmonds writes:
Hi All,
Some clients have voiced some concern over the ability of me and my team
having access to their mail whilst it passes through my mail network.
Of course, I dont engage in reading peoples emails whilst performing email
administration but nevertheless the opportunity is there and we do have
access to it.
I have been reading a little about PGP in relation to email and it looks
like they (the clients) have to make the effort to secure their mail on
their computer first before sending.
Is there any guidance/tips/wording I can give my clients to give them the
option to make thier emails secure?
Is there a solution out their I can enable server side which automatically
encrypts incoming emails?
If emails are encryypted, can declude filter them?
How does everyone else answer the question of "can you read my emails
question"?
I am using IMAIL, WIN 2003, Declude 4.3.7 if thats any help.
Kindest Regards
Craig Edmonds
123 Marbella Internet
W: www.123marbella.com <http://www.123marbella.com/>
E : [EMAIL PROTECTED]
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.mail-archive.com.
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.mail-archive.com.
