On Tue, Aug 27, 2002 at 11:53:08AM +0200, Eugen Leitl wrote:
I'm getting rather pissed at diverse wiretap legislations making the global rounds (lately EU is making noises towards storing a one year deep FIFO of all email and browsing traffic for all users), and would like to run my own MTA, with MX fallback to ISPs. I would like to have secure MUA-MTA (IMAP/SSL POP/SSL and MTA-MTA (if the other end supports it).
lne.com's sendmail now supports START_TLS. Not that that adds any security to cpunks list mail of course. But it does increase the amount of encrypted traffic. It's relatively easy to turn on TLS in sendmail. It's not secure against active attackers that can modify the data in the TCP stream but it's better than nothing.
If anyone knows of patches which automatically query keyservers and GPG/PGP encrypt emails to targets (this is not a deep paranoia setup, just a cheap measure to increase encrypted mail traffic) that would be nice to have, too.
Besides START_TLS which is built in, there is probably an auto-PGP patch for sendmail. Eric