On Fri, 24 Nov 2006 16:49:19 +1300 (NZDT)
Nick Rout <[EMAIL PROTECTED]> wrote:
> 
> An imap based webmail over ssh would be the choice. No clent caches lying
> 
> around on hard drives. All handled locally on the server, including smtp
> 
> for outgoing.
> 
I expect you mean ssl (:

However, there are three discrete operations that could be compromised... 

1. mail server <-> mail server 
2. mail server -> local mailbox ( least likely )
3. email client -> local mailbox.

1. server  <-> server comms can be a) encrypted ( tls , etc ) and b) only 
allowed from legit users
2. Although the least likely, as it requires physical connection to the server 
at some point, it is so simple to forward a copy of anyones mail to another 
address.
3. I use imap over ssl - no web client necessary though. Easy enought to break, 
but does require serious effort.

There are also programs out there that offer en/decryption services - tho they 
tend to be difficult for users to understand conceptually and so are difficult 
to enforce. 

Finally, don't forget the use of good ole pgp - 10 years old it may be.

Steve

Reply via email to