From owner-freebsd-questions@FreeBSD.ORG Wed Jul 30 13:15:04 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 214731065670 for ; Wed, 30 Jul 2008 13:15:04 +0000 (UTC) (envelope-from svein.h@lvor.halvorsen.cc) Received: from bene2.itea.ntnu.no (bene2.itea.ntnu.no [IPv6:2001:700:300:3::57]) by mx1.freebsd.org (Postfix) with ESMTP id 683DA8FC0C for ; Wed, 30 Jul 2008 13:15:03 +0000 (UTC) (envelope-from svein.h@lvor.halvorsen.cc) Received: from localhost (localhost [127.0.0.1]) by bene2.itea.ntnu.no (Postfix) with ESMTP id 87FBF90003 for ; Wed, 30 Jul 2008 15:15:01 +0200 (CEST) Received: from maren.thelosingend.net (maren.math.ntnu.no [129.241.211.48]) by bene2.itea.ntnu.no (Postfix) with SMTP id 76B1E90001 for ; Wed, 30 Jul 2008 15:14:54 +0200 (CEST) Received: (qmail 76992 invoked by uid 88); 30 Jul 2008 15:14:44 +0200 Received: from maren.math.ntnu.no (HELO weld.ej2.thelosingend.net) (129.241.211.48) by maren.thelosingend.net (qpsmtpd/0.31.1) with ESMTP; Wed, 30 Jul 2008 15:14:44 +0200 Message-ID: <4890694A.9030607@lvor.halvorsen.cc> Date: Wed, 30 Jul 2008 15:14:50 +0200 From: Svein Halvor Halvorsen User-Agent: Thunderbird 2.0.0.9 (X11/20080315) MIME-Version: 1.0 To: Andrew Gould References: In-Reply-To: X-Enigmail-Version: 0.95.0 OpenPGP: id=9198BB40; url=mailto:pgpkey@svein.halvorsen.cc Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Virus-Scanned: Debian amavisd-new at bene2.itea.ntnu.no Cc: FreeBSD Questions Mailing List Subject: Re: OT: encrypted email using web based application X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Jul 2008 13:15:04 -0000 Andrew Gould wrote: > If I start with Subject line with the word "secure" using my work's email > system, the email is sent to a secure, web based application where the > recipients can view the message securely. The recipients receive a message > that a secure email message is waiting for them there. They have to create > an account based upon their email address to view the message. They do not > have to recreate the accounts for future messages. > > This system is easy to use; and we don't have to worry about whether the > recipients have PGP or GPG. Is there an open source application that does > this? How is this secure? Ok, I can see that if the message is served over https, then the network packages themselves cannot be sniffed easily. But as long as the recipient did not give you the key to use, then this is not secure. Why should the recipient trust the server? Whether there is an open source solution, I don't know however. sv.