16 Jun
2010
16 Jun
'10
5:58 p.m.
Hi Andreas,
Yes , this should be a easy work around to see if the message was
signed/encrypted before it reached the gateway. No Outlook user willl
every read e-mail headers :-(
What might be problematic is that a banner can be easily spoofed. Any
djigzo-* header is removed when the email enters Djigzo. Therefore the
security headers cannot be spoofed. With a security banner (a text or
HTML text part) it's nearly impossible to detect whether the banner is
spoofed. So, the banner should only be viewed as informational.
The problem is that the whole *chain* of smtp servers
up to the
recpient inbox must support DSN which is a extension of ESMTP, to be
useful. In the Djigzo case the Java based James SMTP server does not
support DSN until recently?? So it is more a problem of James than a
problem with Postfix or Djigzo actually...
The DSN ends at the Djigzo gateway because of this so it is not
possible to request a DSN beyond there.
Ok I'll look into it. Can't promise anything but I'll do my best :)
- User viewable tagging (subject extension) for
incoming
signed/encrypted mail
( Sometimes it is really useful if the user is able to check)
If I understand you,
you want to add some sort of banner to the message
containing the security information? something similar to what's added
to the headers but now visible for the end-user? No problem, i will try to get involved at Thunderbird
etc. to see if
there is some work in progress on the crypto part. Maybe there will be
a chance to throw it in :-)
Yes that would be nice to see whether Thunderbird supports it. Perhaps
TrustedBird (a security enhanced Thunderbird) already supports this?
http://www.trustedbird.org
Kind regards,
Martijn
--
Djigzo open source email encryption