In article <cistron.20040212023825.GA77062@metron.com>,
Correct, unless my ISP stops giving me full connectivity and starts blocking
incoming (and outgoing) ports at whim. In my country, no large commercial
entity, nor any government entity can be trusted, as has repeatedly been shown.
I can locally submit to my mailserver, but if it tries to make an outbound
connection on port 25 to a client's mailserver, and that is blocked, than
all confidentiality of business or personal communication is gone.
Since when was anything sent over port 25 confidential?
Alex
Since Phil Zimmerman decided to do something about it.
And quite frankly, he was right - that's the only way to do it right.
(I'm going to pretend that the S/MIME equivalents are in fact
equivalent for the sake of the discussion, modulo tinfoil regarding
getting a reliable and trusted cert chain put together).
Since when was anything sent over port 25 confidential?
Since Phil Zimmerman decided to do something about it.
Well if you are considering the plain-text of an encrypted mail,
it doesn't much matter whether port 25 is intercepted by whatever
governmental agency, or relayed through however many servers with
questionable operators.
And quite frankly, he was right - that's the only way to do it right.
Oh I agree. My point to the original poster was that supposed security
of port 25 communications was not a good reason to avoid using
relays on the way. If you want security of you communications
a good first step is PGP (et al.). (Note that this does still leak
can be read via intercept at a relay).
Alex