Anders Rundgren wrote: > Gervase Markham wrote: >>> The biggest impediment to secure email today is the existence and >>> popularity of webmail. In Mozilla terms, the biggest impediment to >>> Thunderbird today is Firefox. > >> It seems that people are happy to make the trade-off of privacy >> against convenience here. I suspect it's unlikely that we are going to >> be able to change their minds on that. Hence extensions like the above. > > IMHO Web-mail *adds* security to the e-mail ecosystem since it requires > the user to authenticate in order to send a message.
Here in Germany most public e-mail providers also require you to authenticate when connecting via SMTP. You can also use SMTP with STARTTLS to protect the password transmitted. So this is no strong argument for webmail. > Encryption is another thing which is impossible to scale-up using an > off-line e-mail model. ??? When using Seamonkey as MUA I prepare S/MIME-encrypted/signed e-mail to project members saving the message to folder "Unsent Messages" for later delivery via SMTP. Oh my god, it works! Please tell what I'm doing wrong. ;-} > Exchanging certificates also violates the privacy > anyway since one of the most secret things is actually *who* you > communicate with. ??? Ciao, Michael. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto