[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: (quickest) Re: Security for mail on the road
- To: Chuck Yerkes <chuck+obsd@2003.snew.com>
- Subject: Re: (quickest) Re: Security for mail on the road
- From: Chris Paul <chris.paul@rexconsulting.net>
- Date: Mon, 1 Sep 2003 10:15:03 -0700
- Cc: misc@openbsd.org
- References: <upb2lvksu5l9utnhhtes4las6ud2brs2d8@4ax.com> <3F51D2FC.9030503@planet.nl> <20030831183631.GC22447@snew.com> <20030831195432.GA1391@wilbur.25thandClement.com> <3F525880.1050505@gmx.net> <20030831143717.1f70c4f9.chris.paul@rexconsulting.net> <20030901021850.GA25879@snew.com>
On Sun, 31 Aug 2003 22:18:50 -0400
Chuck Yerkes <chuck+obsd@2003.snew.com> wrote:
> Oh yeah, the quickest way is to just use localhost:110 and localhost:25
> and use ssh tunnels.
yeah, a SSH key to my servers and of course I have access to all my ports on those servers.
In a corporate environment, think this would work? Yeah, I guess sales guys I deal with might be able to do this if you made them a button to Putty on their desktop to open the forwarded ports. F-Secury, Putty or Cygwin is reliable enough to always work and provide the tunnel. No big magic in creating those SSH tunnels.
(then again, do you want to train your sales guys to tunnell traffic through firewalls?) Also, assuming you are using public key, you need to give them all their keys and manage that.
On the other hand, say you are supporting a wider base of customers. Perhaps you are an ISP and wish to provide "security" and "authentication". Then you probably want STARTTLS and cyrus SASL and some "destructions for your lusers".
Do any ISP's provide this?
I like to think what the internet would look like if all the email traffic was encrypted.
I'd feel more free that way. Everybody starttls (8)!!!
CP