From owner-freebsd-questions@FreeBSD.ORG Wed Aug 6 02:17:34 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D14941065672 for ; Wed, 6 Aug 2008 02:17:34 +0000 (UTC) (envelope-from mypiju@gmail.com) Received: from ti-out-0910.google.com (ti-out-0910.google.com [209.85.142.186]) by mx1.freebsd.org (Postfix) with ESMTP id 5061D8FC0C for ; Wed, 6 Aug 2008 02:17:34 +0000 (UTC) (envelope-from mypiju@gmail.com) Received: by ti-out-0910.google.com with SMTP id d27so848311tid.3 for ; Tue, 05 Aug 2008 19:17:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:in-reply-to:mime-version:content-type:references; bh=HRoCzi+W0xmH0utJMXKaRJEoBtgDOADN+UySSU04bZg=; b=gowhJivmiYYiwFM+AbTCaAbl3Dj8CRgdlAWhcMhP0T7JCSpfcFC74+kfhWpX9O5NA1 8SEzAvily6b5w7Pue3x00570EGrOTSoXTfc/hM6SdcznfUrcf0tvTYKZtmqs4hbr4hW0 vGA+3VQSGYaV2meQAtYE8yHkVfzz6INIdaj5k= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version :content-type:references; b=H5/wIgPNCbYgCeEHObagrTb4pYXg3cjqKRC/bKHnDMGKIiAamnH0VcORA1tY2BX/od AesL97ffKwBoGuzUP+MZdfRd7hsU/es57znb7Yzx2lKhQ2rnlujhw09ajgeCRGYSfMIl Qa4i6wrW2k2Si17lwW1ATHFZx0cAOdQJGWidQ= Received: by 10.110.43.20 with SMTP id q20mr1807978tiq.14.1217987305734; Tue, 05 Aug 2008 18:48:25 -0700 (PDT) Received: by 10.110.52.16 with HTTP; Tue, 5 Aug 2008 18:48:25 -0700 (PDT) Message-ID: <1de16aa10808051848l6b45539dgf1939b631a0ecd87@mail.gmail.com> Date: Wed, 6 Aug 2008 09:48:25 +0800 From: "Mohamad Faizul Zulkifli" To: "FreeBSD Questions Mailing List" In-Reply-To: <20080731205033.GA6805@kokopelli.hydra> MIME-Version: 1.0 References: <4890694A.9030607@lvor.halvorsen.cc> <20080731205033.GA6805@kokopelli.hydra> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: OT: encrypted email using web based application X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Aug 2008 02:17:34 -0000 how about squirrelmail and horde ? On Fri, Aug 1, 2008 at 4:50 AM, Chad Perrin wrote: > On Wed, Jul 30, 2008 at 03:14:50PM +0200, Svein Halvor Halvorsen wrote: > > Andrew Gould wrote: > > > If I start with Subject line with the word "secure" using my work's > email > > > system, the email is sent to a secure, web based application where the > > > recipients can view the message securely. The recipients receive a > message > > > that a secure email message is waiting for them there. They have to > create > > > an account based upon their email address to view the message. They do > not > > > have to recreate the accounts for future messages. > > > > > > This system is easy to use; and we don't have to worry about whether > the > > > recipients have PGP or GPG. Is there an open source application that > does > > > this? > > > > How is this secure? Ok, I can see that if the message is served over > > https, then the network packages themselves cannot be sniffed > > easily. But as long as the recipient did not give you the key to > > use, then this is not secure. Why should the recipient trust the server? > > > > Whether there is an open source solution, I don't know however. > > It depends on your definition of "secure" -- which can vary from one > circumstance to another. If the emails in question are "company > property", there's no reason to consider access to the emails by company > officials a breach of security. On the other hand, if sensitive company > information is sniffed in plain text on the network, that could be > disastrous. > > From the sound of it, the circumstances the OP described refer to such a > situation -- one where strict person-to-person privacy isn't a necessary > goal of relevant security concerns. > > -- > Chad Perrin [ content licensed PDL: http://pdl.apotheon.org ] > Scott McNealy: "Microsoft is now talking about the digital nervous > system. I guess I would be nervous if my system was built on their > technology too." > -- Mohamad Faizul Zulkifli http://piju.fakap.net/