On 27/10/2019 06.26, lists wrote: > My bank insists I use their website for anything secure. I don't get anything > in my email that would be a security problem.
I used bank just as an example. Feel free to substitute another scenario, if you find mine hard to imagine. > Wouldn't a private key have to be held on your server to do what you want? If > so, that hacker can get the key. No. Definitely not. Only public key is needed for asymmetric encryption. > Personally I would harden the server. It sounds like this is a private > server. You can use the firewall to vastly limit the countries where your > email can be retrieved. That is filter the hell out of all email ports except > 25. Besides filtering countries, I have a file of about 30k of ipv4 cidrs > from data centers that I block from all email ports except 25 and all the web > ports. No eyeballs in datacenters. Sure, I want to have both: A secure server, AND encrypted emails. What is wrong with that ?
