On Fri, 24 Nov 2006 16:49:19 +1300 (NZDT) Nick Rout <[EMAIL PROTECTED]> wrote: > > An imap based webmail over ssh would be the choice. No clent caches lying > > around on hard drives. All handled locally on the server, including smtp > > for outgoing. > I expect you mean ssl (:
However, there are three discrete operations that could be compromised... 1. mail server <-> mail server 2. mail server -> local mailbox ( least likely ) 3. email client -> local mailbox. 1. server <-> server comms can be a) encrypted ( tls , etc ) and b) only allowed from legit users 2. Although the least likely, as it requires physical connection to the server at some point, it is so simple to forward a copy of anyones mail to another address. 3. I use imap over ssl - no web client necessary though. Easy enought to break, but does require serious effort. There are also programs out there that offer en/decryption services - tho they tend to be difficult for users to understand conceptually and so are difficult to enforce. Finally, don't forget the use of good ole pgp - 10 years old it may be. Steve
