|Subject:||Re: [bug-anubis] anubis and transparent gpg encryption engine integrated in a MTA|
|Date:||Thu, 24 Feb 2005 10:16:27 +1300|
|User-agent:||Mozilla Thunderbird 0.8 (X11/20041012)|
Fabio Pietrosanti wrote:
In such situation obviously there are some issue to manage like a locale cache of public key but it seems to me quite a simple task to do.In this way users doesn't need to trust system administration or who manage the email systems because all emails are encrypted.
The idea is good - I suspect that Anubis would be able to do this with Guile. I also expect that postfix would be able to do this without Anubis, in a similar manner to anti-virus external scanners.
In any case, the server administrators still need to be trusted by the sender - unencrypted emails are arriving on the server, and therefore could be intercepted/altered. Also, the user has to trust that the server will sign with the correct key.
But, as a company email gateway, this would possibly be a good feature. If every outgoing email were signed with the server's gpg key, it becomes possible to verify that communication from the company is valid. It would be convenient to sign with the users key, but they would have to trust the server.
|[Prev in Thread]||Current Thread||[Next in Thread]|