On Thu, 2009-05-07 at 09:17 +0100, Paul Murphy wrote: > Steffan wrote: > > > I wonder why you don't want to encrypt/sign in the MUA. It is more > > flexible and, well, works most of the time. > > Because users are incapable of getting it right, and the time they forget to > encrypt the message may also be the time they send company B's confidential > data to company A.
You might want to consider checking that the message is encrypted and rejecting if it is not. That's probably WAY simpler and has the side-effect of educating users on your policy. Richard
signature.asc
Description: This is a digitally signed message part
_______________________________________________ NOTE: If there is a disclaimer or other legal boilerplate in the above message, it is NULL AND VOID. You may ignore it. Visit http://www.mimedefang.org and http://www.roaringpenguin.com MIMEDefang mailing list MIMEDefang@lists.roaringpenguin.com http://lists.roaringpenguin.com/mailman/listinfo/mimedefang