No usable security is 100%. It is a red herring to point out ways around a a security mechanism as a reason to not implement. There are products (Mimesweeper comes to mind, and WorldTalk has something) that look for key words. The idea is not to look for "sensitive information" but to look for email that might contain sensitive information based on certai key words (project names are the most common). The use of such products is to stop the accidental disclosure of sensitive information, often done when people forget about local nicknames (aliases) in their mail user agent. Fred Avolio Consulting 16228 Frederick Road, PO Box 609, Lisbon, MD 21765 410-309-6910 (voice) 410-309-6911 (fax) http://www.avolio.com - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
