On Tue, 9 Oct 2007, Jo Rhett wrote: | Right, but transparent proxy of SMTP connections is available in even the | lowest end firewalls now (like free ones you get with service).
OK. | And very few clients will complain if they aren't required to do SMTP | auth, which means that the user will never know that their session was | intercepted. Yes again. Of course the best solution is for clients to always submit on port 465/587, and hope that's allowed out by the hotels / mobile connectivity providers. ( as per the relevant recommendations ) Your server then enforces encryption and SMTP-AUTH, and the SSL will (hopefully) defeat any man-in-the-middle attacks by trans-proxies.
