-ray wrote: [onitted] > Use GPG if you want true end-to-end mail encryption. >
Not really true. The primary reason for TLS is authentication encrytion, IMHO. Downloading pop3 mail from Cox transmits clear text username and password. That leaves mail open to reading by anyone sniffing about. It's true that GPG encrypts the message, but who encrypts all their messages? A cracked account is still ripe for malicious deletion of email. I agree that Cox should support TLS. OTOH... I believe EVERYONE should use GPG encryption for all email. Imagine that email servers were able to reject mail because it's not encrypted with a valid GPG key. That would make it too expensive for spammers who would need to track down every GPG key, but not prohibitive for people sending real mail. It would also solve some security problems. Is it going to happen? Probably not. Most mail that people send each other is frivolous "near" spam anyway -- bad jokes, crumby links, silly stories -- all hardly worth encryption. -- Craig Jackson [EMAIL PROTECTED]
