* on the Mon, Feb 16, 2015 at 11:39:22AM +0100, lst_ho...@kwsoft.de wrote: >> A couple of the servers I support are medical offices, and for patient >> confidentiality reasons they need to send email out encrypted. >> After a lot of discussion they have come to the conclusion that in order >> to avoid accidentally sending confidential data unencrypted, all email >> must be encrypted. >> What they would like is a filter on outgoing email that checks for >> encryption and refuses anything not encrypted. They need to err on the >> side of caution. >> >> So far Google has not been my friend. >> >> Does anybody know of a way of enforcing encryption, or detecting >> unencrypted email. > > This is a task for a encryption gateway. You might have a look here in the > section PGP/SMIME Gateways: http://www.postfix.org/addon.html > > With such a gateway you can enforce all kind of policy.
On an old Exim box, I used to do something similar to this with the following
two line bit of config:
deny condition = ${if !match{$message_body}{-----BEGIN PGP MESSAGE-----}}
message = Unencrypted message. Encrypt then retry.
Is there really no equivalent way of doing something like this in Postfix
without having to call out to an external program?
--
Mike Cardwell https://grepular.com https://emailprivacytester.com
OpenPGP Key 35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F
XMPP OTR Key 8924 B06A 7917 AAF3 DBB1 BF1B 295C 3C78 3EF1 46B4
signature.asc
Description: Digital signature
