if you really wanted you could rewrite dbmail to take advantage of AES
features of mysql.
On 03/27/2012 at 5:03 AM, Reindl Harald wrote:Am 27.03.2012 10:52,
schrieb Pascal Longrais:
>
>
> Hello All,
>
> Is there some way/past experience to automatically crypt user
mail/mime content with tools
Am 27.03.2012 10:52, schrieb Pascal Longrais:
>
>
> Hello All,
>
> Is there some way/past experience to automatically crypt user mail/mime
> content with tools like PGP?
dbmail is "only" IMAP/POP3/LMTP
mail transport is done by the MTA (postfix, exim)
however, it does NOT make sense to
Hello All,
Is there some way/past experience to automatically crypt user mail/mime
content with tools like PGP?
Thanks,
Pascal
___
DBmail mailing list
DBmail@dbmail.org
http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
t; <[EMAIL PROTECTED]>
To: "DBMail mailinglist"
Sent: Tuesday, January 29, 2008 12:00 AM
Subject: Re: [Dbmail] mail encryption
Following this thread made me think of a little development resource that
might be helpful.
I don't know if this helps anyone but I added dbmail
> I hadn't thought about. I'm going to investigate the possibility.
>
> Sim
>
>
> Original Message
> Subject: [Dbmail] mail encryption
> From: Dave Logan <[EMAIL PROTECTED]>
> To: DBMail mailinglist
> Date: Tuesday, January 29, 2008 07
keeps the mails in the database
until cleanup, if I understand correctly).
James Cloos idea of doing the encryption at the MTA is a great idea that
I hadn't thought about. I'm going to investigate the possibility.
Sim
Original Message ----
Subject: [Dbmail] mail encrypt
The server side of doing this is easy. The client side (both MUA and
user :) may not be.
I suggest doing the encryption at the MTA rather than at the injection.
Use the same methods the various anti-virus, anti-spam, et al systems do
to interact with your MTA. That may be milters for sendmail o
So, I'm just throwing this out there, are you looking for
true encryption, or just an obfuscation? For example could
you do a rot13 or something equivalent? Sure it's not real
security, and it's easily enough worked around, i.e.
instead of searching for 'salary' I'd search for the rot13
value of
On Dienstag, 29. Januar 2008 Marc Dirix wrote:
> Who says the CEO as a /he/ and the CFO a /she/ ?
> Maybe you've been reading their emails?
Of course, I was just looking for Al-Quaida terroristic plans. You know,
in the USA everything against terrorism is explicitly allowed, ask the
DOHS.
/* ju
Actually, in my messages I have referred to the CEO as a him and the CFO
as a her. Not because of any malicious stereotypes or anything, just
that's the way it is in the organization I work for.
sim
Who says the CEO as a /he/ and the CFO a /she/ ?
Maybe you've been reading their emails?
(No
> That is what is solved by PGP: The CEO types an e-mail, his *PC*
> encrypts it and sends it to the CFO. This encrypted text is stored in
> the DB, and transferred over the Internet and all other cables
> encrypted. Only on the PC of the CFO the e-mail will be decrypted. When
> she answers, it
On Dienstag, 29. Januar 2008 Sim Zacks wrote:
> The problem is having the data encrypted as it is stored.
That is what is solved by PGP: The CEO types an e-mail, his *PC*
encrypts it and sends it to the CFO. This encrypted text is stored in
the DB, and transferred over the Internet and all other
Sim Zacks wrote:
> The problem is having the data encrypted as it is stored. Paul Stevens
> said in one of his posts that this is a *bad* idea. Is this because of
> the amount of time it would take, or is there another problem here? What
> I was thinking is that if I had the encryption library on t
On Tue, Jan 29, 2008 at 11:19:45AM +0200, Sim Zacks wrote:
> The problem is having the data encrypted as it is stored. Paul Stevens said
> in one of his posts that this is a *bad* idea. Is this because of the
> amount of time it would take, or is there another problem here? What I was
> thinking
The problem is having the data encrypted as it is stored. Paul Stevens
said in one of his posts that this is a *bad* idea. Is this because of
the amount of time it would take, or is there another problem here? What
I was thinking is that if I had the encryption library on the server
then on the
IMAP, especially on a database, changes the picture because while
the sys admin is doing routine maintenance it is so easy and
untraceable to search for keywords (such as his name or the word
salary) that even a "trusted" system administrator will do this.
When the CFO gets salary inform
I think everyone is missing the point here.
Everyone knows that email is insecure.
Everyone knows that system administrators have to be trusted, at least
to some degree.
For the system administrator to read someone's email in our current
system, he would have to put a sniffer on and redirect a
Following this thread made me think of a little development resource
that might be helpful.
I don't know if this helps anyone but I added dbmail to our open pgp
keyserver cluster. These servers are really only intended for group use,
like for example a group of all DBMail users. If you are loo
Sim Zacks wrote:
I've read a lot about password encryption with dbmail, but does (or
can) dbmail support encrpytion of the actual messages?
Our CEO and CFO are both very concerned with the idea of switching to
IMAP because it would make it simple for the system administrators to
read their emai
On 28 Jan 2008, at 23:03, Michael Monnerie wrote:
On Montag, 28. Januar 2008 Michael luich wrote:
The only REAL answer is to encrypt the message at it's
source and decrypt it at it's destination. And this requires a lot
more than Dbmail can handle alone.
Yes, and it's called PGP or GnuPG. No
On Montag, 28. Januar 2008 Michael Monnerie wrote:
> Yes, and it's called PGP or GnuPG. No reason to invent something new.
In case somebody uses Outlook and wants PGP: http://www.gpg4win.org/
mfg zmi
--
// Michael Monnerie, Ing.BSc- http://it-management.at
// Tel: 0676/846 914 666
On Montag, 28. Januar 2008 Michael luich wrote:
> The only REAL answer is to encrypt the message at it's
> source and decrypt it at it's destination. And this requires a lot
> more than Dbmail can handle alone.
Yes, and it's called PGP or GnuPG. No reason to invent something new.
mfg zmi
--
// M
My company, Globalcerts LC (http://www.globalcerts.net) builds email
encryption appliances. Our CEO asked us if our product could do this and
we took a look. Ours won't as we only handle mail leaving the
organization and it's transport across the net, but it is possible to do.
Dbmail does no
The CEO and CFO might be surprised to learn that writing something on an
email is pretty much like writing it on the back of a postcard and
mailing it. You will not absolutely prevent electronic mail sent through
the SMTP protocol (over 20 years old) from being read by persons other
than the re
On Montag, 28. Januar 2008 Sim Zacks wrote:
> Our CEO and CFO are both very concerned with the idea of switching to
> IMAP because it would make it simple for the system administrators to
> read their email. They aren't as concerned with sniffers and stuff
> like that because that would require con
Sim Zacks wrote:
> I've read a lot about password encryption with dbmail, but does (or can)
> dbmail support encrpytion of the actual messages?
> Our CEO and CFO are both very concerned with the idea of switching to
> IMAP because it would make it simple for the system administrators to
> read thei
BMail mailinglist
Subject: Re: [Dbmail] mail encryption
On Monday 28 January 2008 10:33:59 Sim Zacks wrote:
> This is true, but if I send the CEO a message and I don't encrypt it
> then it will be sitting in his dbmail account without encryption.
There should be some company's securit
On Monday 28 January 2008 10:33:59 Sim Zacks wrote:
> This is true, but if I send the CEO a message and I don't encrypt it
> then it will be sitting in his dbmail account without encryption.
There should be some company's security politics concerning security sensitive
information. So all your us
Sim Zacks wrote:
> I've read a lot about password encryption with dbmail, but does (or can)
> dbmail support encrpytion of the actual messages?
> Our CEO and CFO are both very concerned with the idea of switching to
> IMAP because it would make it simple for the system administrators to
> read thei
This is true, but if I send the CEO a message and I don't encrypt it
then it will be sitting in his dbmail account without encryption.
Sim
Hello,
in MUA you can use Certificates to Sign and Encrypt mail messages. The
messages will be stored encrypted in dbmail database. So there will be no
s
On Monday 28 January 2008 09:01:09 Sim Zacks wrote:
> I've read a lot about password encryption with dbmail, but does (or can)
> dbmail support encrpytion of the actual messages?
> Our CEO and CFO are both very concerned with the idea of switching to
> IMAP because it would make it simple for the
I've read a lot about password encryption with dbmail, but does (or can)
dbmail support encrpytion of the actual messages?
Our CEO and CFO are both very concerned with the idea of switching to
IMAP because it would make it simple for the system administrators to
read their email. They aren't as
32 matches
Mail list logo
