RE: Sending Secure Mail over the Internet
My take on this is that it sounds like the minimum requirement is end to end secure connection over the Internet (as Andrey pointed out)...which does sound like a TLS candidate. The problem with using PGP or the like is that you then rely on the customer (client) to encrypt the email. If the requirement is that all transactions are encrypted then at least TLS enforces a secure transmission between two gateways. But I would also implement actual message encryption as well (again..PGP or the like). So in the best case, you have an encrypted message traveling over a secure channel (public channel that is...this doesn't address what happens to the message while it is on its way to gatewayA and what happens to the message once it leaves gatewayB). The worst case is that a client forgets to encrypt the email, but it is still transmitted over a secure channel (thus still meeting the requirement to transmit it securely over the Internet). Best regards, Steve -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Fyodorov, Andrey Sent: Thursday, July 17, 2003 1:59 PM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet Ok I suggested it. Because from what I read, they want to always send mail to the same destination in a secure way (We want to send reports to the State that contain information about our students) In order to use PKI encryption, they would have to ask the recipient to obtain a certificate first, then get the recipient's public key from a digitally signed message, then always remember to encrypt individual messages. With TLS, you set it up once and then start sending e-mail - the server does the job of encrypting the transmission every time. If I had to send encrypted mail to many different destinations, I would sure go with PKI or maybe PGP. But when you are targeting the same place all the time, why not TLS? -Original Message- From: Johansson Patrick [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 3:20 PM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet Ok, maybe I've had a few too many beers but why in the world is everybody suggesting TLS. It's a bother to set up and you have to do it with every mail server you want to have secure communications with. Great, the communications are secure but how about the actual e-mail? Correct me if I'm wrong but the easiest way in this instance would be to just encrypt the e-mail. Windows does provide CA and you can always get another certificate from a known source. Another way to go is to use pgp or some offshoot of that. I don't know but sometimes we (designers/administrators) get a little over excited using technology we don't really have to use. Well, just my 5 cents. -Patrick -Original Message- From: Dickenson, Steven [mailto:[EMAIL PROTECTED] Sent: 17. heinäkuuta 2003 19:04 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet If the sending and receiving mail servers, as well as any in-between support it, TLS is an option. Personally, I'd encrypt the e-mails using GnuPG. www.gnupg.org Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED
RE: Sending Secure Mail over the Internet
TLS works like SSL, only for SMTP Sincerely, Andrey Fyodorov Systems Engineer Messaging and Collaboration Spherion -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
what is TLS? Sorry if this is a stupid question. :) Sam -Original Message- From: Fyodorov, Andrey [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:44 AM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet TLS works like SSL, only for SMTP Sincerely, Andrey Fyodorov Systems Engineer Messaging and Collaboration Spherion -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] --- [This E-mail scanned for viruses by Declude Virus] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
Have a look at MS Q319267 -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: 17 July 2003 15:01 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet what is TLS? Sorry if this is a stupid question. :) Sam -Original Message- From: Fyodorov, Andrey [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:44 AM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet TLS works like SSL, only for SMTP Sincerely, Andrey Fyodorov Systems Engineer Messaging and Collaboration Spherion -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] --- [This E-mail scanned for viruses by Declude Virus] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] *** This correspondence is confidential and is solely for the intended recipient(s). If you are not the intended recipient, you must not use, disclose, copy, distribute or retain this message or any part of it. If you are not the intended recipient please delete this correspondence from your system and notify the sender immediately. No warranty is given that this correspondence is free from any virus. In keeping with good computer practice, you should ensure that it is actually virus free. E-mail messages may be subject to delays, non-delivery and unauthorised alterations therefore, information expressed in this message is not given or endorsed by Sx3 unless otherwise notified by our duly authorised representative independent of this message. Sx3 is a trading name of Service and Systems Solutions Limited, a limited company registered in Northern Ireland under number NI 32979 whose registered office is at 120 Malone Road, Belfast, BT9 5HT. *** _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
Another possibility is using pgp or certificates to encrypt the e-mail you send. -Patrick -Original Message- From: Henderson Richard [mailto:[EMAIL PROTECTED] Sent: 17. heinäkuuta 2003 17:49 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet Have a look at MS Q319267 -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: 17 July 2003 15:01 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet what is TLS? Sorry if this is a stupid question. :) Sam -Original Message- From: Fyodorov, Andrey [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:44 AM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet TLS works like SSL, only for SMTP Sincerely, Andrey Fyodorov Systems Engineer Messaging and Collaboration Spherion -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] --- [This E-mail scanned for viruses by Declude Virus] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] *** This correspondence is confidential and is solely for the intended recipient(s). If you are not the intended recipient, you must not use, disclose, copy, distribute or retain this message or any part of it. If you are not the intended recipient please delete this correspondence from your system and notify the sender immediately. No warranty is given that this correspondence is free from any virus. In keeping with good computer practice, you should ensure that it is actually virus free. E-mail messages may be subject to delays, non-delivery and unauthorised alterations therefore, information expressed in this message is not given or endorsed by Sx3 unless otherwise notified by our duly authorised representative independent of this message. Sx3 is a trading name of Service and Systems Solutions Limited, a limited company registered in Northern Ireland under number NI 32979 whose registered office is at 120 Malone Road, Belfast, BT9 5HT. *** _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
Transport Level Security or Transport Layer Security (sorry I am too lazy to look up the exact definition) You can setup the SMTP Virtual server to use TLS. And the receiving SMTP server should be also set up to use TLS. You assign a digital certificate to both of them, just like when you set up SSL. Sincerely, Andrey Fyodorov Systems Engineer Messaging and Collaboration Spherion -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 10:01 AM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet what is TLS? Sorry if this is a stupid question. :) Sam -Original Message- From: Fyodorov, Andrey [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:44 AM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet TLS works like SSL, only for SMTP Sincerely, Andrey Fyodorov Systems Engineer Messaging and Collaboration Spherion -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=; lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] --- [This E-mail scanned for viruses by Declude Virus] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
If the sending and receiving mail servers, as well as any in-between support it, TLS is an option. Personally, I'd encrypt the e-mails using GnuPG. www.gnupg.org Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
Ok, maybe I've had a few too many beers but why in the world is everybody suggesting TLS. It's a bother to set up and you have to do it with every mail server you want to have secure communications with. Great, the communications are secure but how about the actual e-mail? Correct me if I'm wrong but the easiest way in this instance would be to just encrypt the e-mail. Windows does provide CA and you can always get another certificate from a known source. Another way to go is to use pgp or some offshoot of that. I don't know but sometimes we (designers/administrators) get a little over excited using technology we don't really have to use. Well, just my 5 cents. -Patrick -Original Message- From: Dickenson, Steven [mailto:[EMAIL PROTECTED] Sent: 17. heinäkuuta 2003 19:04 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet If the sending and receiving mail servers, as well as any in-between support it, TLS is an option. Personally, I'd encrypt the e-mails using GnuPG. www.gnupg.org Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
Or, if it's always sent as an attachment, PKzip v6.0 is pretty good and a lot easier than setting up email encryption. Of course, there is the hassle of zipping the file, exchanging the password with the recipient and knowing that only the attachment is encrypted. Paul Chinnery Network Administrator Mem Med Ctr -Original Message- From: Johansson Patrick [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 3:20 PM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet Ok, maybe I've had a few too many beers but why in the world is everybody suggesting TLS. It's a bother to set up and you have to do it with every mail server you want to have secure communications with. Great, the communications are secure but how about the actual e-mail? Correct me if I'm wrong but the easiest way in this instance would be to just encrypt the e-mail. Windows does provide CA and you can always get another certificate from a known source. Another way to go is to use pgp or some offshoot of that. I don't know but sometimes we (designers/administrators) get a little over excited using technology we don't really have to use. Well, just my 5 cents. -Patrick -Original Message- From: Dickenson, Steven [mailto:[EMAIL PROTECTED] Sent: 17. heinäkuuta 2003 19:04 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet If the sending and receiving mail servers, as well as any in-between support it, TLS is an option. Personally, I'd encrypt the e-mails using GnuPG. www.gnupg.org Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
I didn't suggest it, I said it was an option. I suggested using GPG to encrypt it. It is a good point, though. TLS is a PITA to setup, and doesn't actually secure the e-mail once it arrives. GPG is much easier to use, and more secure, in that the message can only be seen by the intended recipient (provided your secret key is safe). Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Johansson Patrick [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 3:20 PM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet Ok, maybe I've had a few too many beers but why in the world is everybody suggesting TLS. It's a bother to set up and you have to do it with every mail server you want to have secure communications with. Great, the communications are secure but how about the actual e-mail? Correct me if I'm wrong but the easiest way in this instance would be to just encrypt the e-mail. Windows does provide CA and you can always get another certificate from a known source. Another way to go is to use pgp or some offshoot of that. I don't know but sometimes we (designers/administrators) get a little over excited using technology we don't really have to use. Well, just my 5 cents. -Patrick -Original Message- From: Dickenson, Steven [mailto:[EMAIL PROTECTED] Sent: 17. heinäkuuta 2003 19:04 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet If the sending and receiving mail servers, as well as any in-between support it, TLS is an option. Personally, I'd encrypt the e-mails using GnuPG. www.gnupg.org Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
Yeps, you are right, you did suggest gnp, I just read the thread and thought WHAT, WHY?!? and responded to the last message, it wasn't meant to be a response to your message but to the thread. :) There are numerous ways to do this but TLS would not be my first choice. -Patrick -Original Message- From: Dickenson, Steven [mailto:[EMAIL PROTECTED] Sent: 17. heinäkuuta 2003 22:29 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet I didn't suggest it, I said it was an option. I suggested using GPG to encrypt it. It is a good point, though. TLS is a PITA to setup, and doesn't actually secure the e-mail once it arrives. GPG is much easier to use, and more secure, in that the message can only be seen by the intended recipient (provided your secret key is safe). Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Johansson Patrick [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 3:20 PM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet Ok, maybe I've had a few too many beers but why in the world is everybody suggesting TLS. It's a bother to set up and you have to do it with every mail server you want to have secure communications with. Great, the communications are secure but how about the actual e-mail? Correct me if I'm wrong but the easiest way in this instance would be to just encrypt the e-mail. Windows does provide CA and you can always get another certificate from a known source. Another way to go is to use pgp or some offshoot of that. I don't know but sometimes we (designers/administrators) get a little over excited using technology we don't really have to use. Well, just my 5 cents. -Patrick -Original Message- From: Dickenson, Steven [mailto:[EMAIL PROTECTED] Sent: 17. heinäkuuta 2003 19:04 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet If the sending and receiving mail servers, as well as any in-between support it, TLS is an option. Personally, I'd encrypt the e-mails using GnuPG. www.gnupg.org Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Sending Secure Mail over the Internet
Ok I suggested it. Because from what I read, they want to always send mail to the same destination in a secure way (We want to send reports to the State that contain information about our students) In order to use PKI encryption, they would have to ask the recipient to obtain a certificate first, then get the recipient's public key from a digitally signed message, then always remember to encrypt individual messages. With TLS, you set it up once and then start sending e-mail - the server does the job of encrypting the transmission every time. If I had to send encrypted mail to many different destinations, I would sure go with PKI or maybe PGP. But when you are targeting the same place all the time, why not TLS? -Original Message- From: Johansson Patrick [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 3:20 PM To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet Ok, maybe I've had a few too many beers but why in the world is everybody suggesting TLS. It's a bother to set up and you have to do it with every mail server you want to have secure communications with. Great, the communications are secure but how about the actual e-mail? Correct me if I'm wrong but the easiest way in this instance would be to just encrypt the e-mail. Windows does provide CA and you can always get another certificate from a known source. Another way to go is to use pgp or some offshoot of that. I don't know but sometimes we (designers/administrators) get a little over excited using technology we don't really have to use. Well, just my 5 cents. -Patrick -Original Message- From: Dickenson, Steven [mailto:[EMAIL PROTECTED] Sent: 17. heinäkuuta 2003 19:04 To: Exchange Discussions Subject: RE: Sending Secure Mail over the Internet If the sending and receiving mail servers, as well as any in-between support it, TLS is an option. Personally, I'd encrypt the e-mails using GnuPG. www.gnupg.org Steven --- Steven Dickenson [EMAIL PROTECTED] Network Administrator The Key School, Annapolis Maryland -Original Message- From: Bridges, Samantha [mailto:[EMAIL PROTECTED] Sent: Thursday, July 17, 2003 9:12 AM To: Exchange Discussions Subject: Sending Secure Mail over the Internet Exchange 5.5 sp4 Windows 2000 Advanced Server Outlook 2000 and XP clients Hello All. I work for a school district in Michigan. We want to send reports to the State that contain information about our students. The information contained in the email attachments must remain confidential and private. Therefore, I need to provide a secure way of sending reports/attachments via email over the Internet. Any ideas or comments would be greatly appreciated. SSL only provides secure logonsright??? Thanks for any help. Samantha _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang =english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchangetext_mode=lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]