[linux-elitists] Re: right MTA for crypto support

Eric Murray ericm@lne.com
Tue Aug 27 10:24:43 PDT 2002


On Tue, Aug 27, 2002 at 11:53:08AM +0200, Eugen Leitl wrote:
> I'm getting rather pissed at diverse wiretap legislations making the
> global rounds (lately EU is making noises towards storing a one year deep
> FIFO of all email and browsing traffic for all users), and would like to
> run my own MTA, with MX fallback to ISPs. I would like to have secure
> MUA-MTA (IMAP/SSL POP/SSL and MTA-MTA (if the other end supports it).


lne.com's sendmail now supports START_TLS.  Not that that adds
any security to cpunks list mail of course.  But it does
increase the amount of encrypted traffic.

It's relatively easy to turn on TLS in sendmail.  It's not secure 
against active attackers that can modify the data in the TCP stream
but it's better than nothing.

 
> If anyone knows of patches which automatically query keyservers and
> GPG/PGP encrypt emails to targets (this is not a deep paranoia setup, just
> a cheap measure to increase encrypted mail traffic) that would be nice to
> have, too.

Besides START_TLS which is built in, there is probably an auto-PGP patch
for sendmail.


Eric




More information about the linux-elitists mailing list