[sclug] All this Debian chat...
David Given
dg at cowlark.com
Thu Feb 5 12:58:59 UTC 2004
On Thursday 05 February 2004 10:42 am, you wrote:
[...]
> Sure, mail originating from outside will almost definetly have passed
> somewhere in the clear, but more in a corporate environment where
> everyone communicates over e-mail, (read: sends Excel/Word documents
> back & forth, bane of my life), it never really leaves the network, and
> if they're working remotely, these documents shouldn't really be passed
> in the clear. I make a point of making sure the MUA's are set up
> correctly to do this, although certain ones make this very very
> difficult.
Ah: different requirements than I was expected. Yes, if you have secure
delivery you'll need secure mail retrieval. For internet mail without secure
delivery, it's a different matter.
[...]
> If you can't run CRAM-MD5 then wrapping the plain authentication with
> SSL is acceptable, and if you can warrant the need for SSL, you'll run
> it on suitable hardware.
...which is what I do. dovecot is set up to disallow plain text authentication
unless SSL is used. If I use a mailer that doesn't support CRAM-MD5 I have to
use SSL and take the speed hit.
Oh, yes, and SSL certificates are a *bummer* to set up.
--
+- David Given --McQ-+
| dg at cowlark.com | "While I write this letter, I have a pistol in one
| (dg at tao-group.com) | hand and a sword in the other." --- Sir Boyle Roche
+- www.cowlark.com --+
More information about the Sclug
mailing list