Re: How secure is SSL emails?
From: Adam O'Brien (adamobrien_at_gmail.com)
Date: 06/25/04
- Next message: Matthijs Hebly: "Re: How secure is SSL emails?"
- Previous message: Bill Unruh: "Re: Stupid Question: encrypting the same message multiple times"
- In reply to: Jason Davis: "How secure is SSL emails?"
- Next in thread: Matthijs Hebly: "Re: How secure is SSL emails?"
- Reply: Matthijs Hebly: "Re: How secure is SSL emails?"
- Reply: Daniele Raffo: "Re: How secure is SSL emails?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 25 Jun 2004 08:14:36 -0700
jasondavis19@hotmail.com (Jason Davis) wrote in message news:<9e03a267.0406250206.240b6d6c@posting.google.com>...
> Hi there,
>
> My boss has asked me to look at SSL authentication for our MS-Exchange
> server. As I found out, I can buy a site certificate from Verisign and
> instal it, to encrypt/sign all outgoing/incoming messages and account
> information (username/password).
>
> The user will need to switch his outlook and check "this server
> requires SSL".
>
> My question is - how secure are those emails and account information?
> in comparison to other forms of protecting email messages?
>
> Thanks,
>
> Jason
SSL is generally very secure. Make sure that you are using an up to
date version of SSL i.e. that you apply patches, and that it's not an
old US 'export-grade' system. As long as you avoid these two pitfalls
you don't need to worry about someone 'breaking the encryption' and
getting access to your messages.
Of course, as Mike alludes to, attackers don't, generally, access
improper information by code breaking. They do it by finding ways of
accessing unencrypted versions of the data. So if you're using SSL
from Exchange server to recieiving client, that will be secure. The
real sources of leaks come from within your network, from people not
bothering to turn SSL on and from those people who feel the need to
print every email, then just throw it out in the normal trash.
Adam
- Next message: Matthijs Hebly: "Re: How secure is SSL emails?"
- Previous message: Bill Unruh: "Re: Stupid Question: encrypting the same message multiple times"
- In reply to: Jason Davis: "How secure is SSL emails?"
- Next in thread: Matthijs Hebly: "Re: How secure is SSL emails?"
- Reply: Matthijs Hebly: "Re: How secure is SSL emails?"
- Reply: Daniele Raffo: "Re: How secure is SSL emails?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
