[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Question about security



1. What isn't a solution , sslwrap, stunnel, or?
2. We are basicly talking free software here. The major players in the
   commercial messaging market support SSL for IMAP/POP3/SMTP out of
   the box (Netscape Messaging Server, MS Exchange, Lotus Notes).

Anyhow...Like I said, qpop and qpopper support apop.

Ariel Biener wrote:
> 
> On Sun, 21 Nov 1999, Omer wrote:
> 
> This is not a solution for a large scale organization....
> 
> --Ariel
> > Quite a lot of pop clients support apop (qpop, for instance).
> > Granted, it's no ssh or ssl - but it's better than nothing.
> >
> > UW's IMAP server supports some sort of challange/response
> > security mechanism (CRAM-MD5? I'm not sure).
> >
> > Anyhow, it's not too hard (if anything, it's darn easy)
> > to get stunnel or sslwrap running and allow your to enjoy
> > the benefits of encrypted email (for the paranoid, anyhow).
> >
> > Ariel Biener wrote:
> > >
> > > On Sun, 21 Nov 1999, Tzafrir Cohen wrote:
> > >
> > > Tzafrir, what pop3/imap clients support secure connection ?
> > >
> > > There might be a reason for the Technion's system administrators for not
> > > installing the suggested software. I am sure the reason is not their
> > > disconcern about Technion's users security.
> > >
> > > If you feel so strong about the subject, take a walk to the CC, and talk
> > > to a system administrator, and ask him to explain their decision. I am
> > > sure they will gladly do so.
> > >
> > > --Ariel
> > >
> > > P.S. Just a reminder to users that sysadmins are there to help, not hinder.
> > >
> > > > Since T2's admins would not install a secure pop3/imap/anything server on
> > > > T2 I use the less elegant solution of opening a ssh connection to T2 with
> > > > forwarding of t2:110 to localhost:20110 . If you do that you may also
> > > > consider forwarding t2:21and maybe others. (Actually - I use imap, so I
> > > > forward t2:143 to localhost:20143). Note that this solution also applies
> > > > to windows users (if they use scrt/ttssh to open a ssh connection).
> > > >
> > > > Then I simply have to tell my client to query on localhost:20143 instead
> > > > of t2[:143]
> > > >
> > > > Tzafrir Cohen
> > > > mailto:tzafrir@technion.ac.il
> > > >
> > > >
> > > > On Sun, 21 Nov 1999, Dmitry Fink (aka FINiK) wrote:
> > > >
> > > > > Till now I wasn't worried about security at all, but recently
> > > > > some things happened that changed my mind, and I decided to secure my
> > > > > system. I installed ssh/ssh2, and almost succeded configuring it (couldn't
> > > > > they just do the 2 versions more compatible?). But the real challenge is -
> > >> > "How the hell do I prevent from my fetchmail (for example) to send
> > > > > my plain user/password over the network every 5 minutes?" Are there
> > > > > any other ways of secure mail-downloading? Is there SSLed POP or smth?
> > > > > The solution should be supported by the server (which I have no control
> > > > > of, and right now it is Technion's T2 server). But any tips for future use
> > > > > (when I move out from T2) are welcome as well.
> > > > >
> > > > >                           Thank you in advance,
> > > > >                                  Dmitry Fink
> > > > >
> > > > >
> > > > >
> > > > > =================================================================
> > > > > To unsubscribe, send mail to linux-il-request@linux.org.il with
> > > > > the word "unsubscribe" in the message body, e.g., run the command
> > > > > echo unsubscribe | mail linux-il-request@linux.org.il
> > > > >
> > > > >
> > > >
> > > >
> > > >
> > > > =================================================================
> > > > To unsubscribe, send mail to linux-il-request@linux.org.il with
> > > > the word "unsubscribe" in the message body, e.g., run the command
> > > > echo unsubscribe | mail linux-il-request@linux.org.il
> > > >
> > >
> > > --
> > > Ariel Biener
> > > e-mail: ariel@post.tau.ac.il         Work phone: 03-6406086
> > > fingerprint = 07 D1E5 3E EF 6D E5 82 0B E9 21 D4 3C 7D 8B BC
> > >
> > > =================================================================
> > > To unsubscribe, send mail to linux-il-request@linux.org.il with
> > > the word "unsubscribe" in the message body, e.g., run the command
> > > echo unsubscribe | mail linux-il-request@linux.org.il
> >
> > --
> > -------------------------------------------------------------------------
> > | Omer Efraim          |             Earth First!                     |
> > | omere@tcmail.tau.ac.il | We can Strip Mine the other planets later... |
> > -------------------------------------------------------------------------
> >
> > =================================================================
> > To unsubscribe, send mail to linux-il-request@linux.org.il with
> > the word "unsubscribe" in the message body, e.g., run the command
> > echo unsubscribe | mail linux-il-request@linux.org.il
> >
> 
> --
> Ariel Biener
> e-mail: ariel@post.tau.ac.il           Work phone: 03-6406086
> fingerprint = 07 D1 E5 3E EF 6D E5 82 0B E9 21 D4 3C 7D 8B BC

-- 
-------------------------------------------------------------------------
| Omer Efraim            |             Earth First!                     |
| omere@tcmail.tau.ac.il | We can Strip Mine the other planets later... |
-------------------------------------------------------------------------

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il