From owner-freebsd-questions  Thu Apr  8 10:34:42 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from caladan.tdx.co.uk (caladan.tdx.co.uk [195.188.177.4])
	by hub.freebsd.org (Postfix) with ESMTP id 6514F14C4A
	for <freebsd-questions@FreeBSD.ORG>; Thu,  8 Apr 1999 10:34:01 -0700 (PDT)
	(envelope-from kpielorz@tdx.co.uk)
Received: from tdx.co.uk (lorca-tx.tdx.co.uk [195.188.177.242])
	by caladan.tdx.co.uk (8.9.3/8.9.3/Kp) with ESMTP id SAA14995;
	Thu, 8 Apr 1999 18:30:04 +0100 (BST)
Message-ID: <370CE79B.C95C0198@tdx.co.uk>
Date: Thu, 08 Apr 1999 18:30:03 +0100
From: Karl Pielorz <kpielorz@tdx.co.uk>
Organization: TDX - The Digital eXchange
X-Mailer: Mozilla 4.51 [en] (WinNT; I)
X-Accept-Language: en
MIME-Version: 1.0
To: Marty Poulin <mpoulin@rascal.honk.org>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Strange security / mail question
References: <Pine.BSF.3.96.990408104450.1074A-100000@rascal.honk.org>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Marty Poulin wrote:
> 
> Hello,
> 
> I don't expect an easy solution to this, but I am curious nonetheless.
> 
> What I want to know is this:  is there any way to restrict or encrypt
> users mail files in /var/mail so that not even root can read the files?
> 
> My reasons are simple - I am running SMTP/POP3 on my server, and I am
> setting up a few friends with mail accounts, and I want them to be assured
> that their mail is secure from prying eyes (including my own).
> 
> Not that I can't be trusted, but I would feel better knowing that my
> friends' privacy is protected.
> 
> I am willing to experiment a bit, but I am still pretty green when it
> comes to FreeBSD.

Even if you could secure your box, and have it encrypt the mail as it came in
etc. - Can you vouch for everyone on the 'inbetween' networks not snooping you
or your friends mail? - You would be better off looking at solutions such as
PGP - and getting your friends to encrypt the mail _before_ they send it via
SMTP, and _decrypt_ the mail when it's on their machine IMHO...

-Karl


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message