On 27/10/2019 13.29, Ansgar Wiechers wrote: > Several years ago I wrote something like that [1]. However, if your mail > server is untrusted I don't think there's a point in bothering.
no server is 100% trusted. By this logic, should I therefore give up? > Even if > you pass the mail through an encrypted transport channel and never store > it on disk, an attacker who has gained control of the server can still > intercept the message. an attacker listening on the server could intercept new message before it is encrypted. But he could not read messages from the past, now stored encrypted on the disk. > [1]: https://www.planetcobalt.net/sdb/crypter.shtml shouldn't this be implemented as a SMTP-Only Milter ?
