can BitMail.sf.net as a p2p email tool for encrypted Email (and hybrid with IMAP-Email) be regarded as a reference model for research to create a secure Email Client? as it uses both, gnupg and openssl!
I would suggest figuring out very precisely what you intend by "secure." Once you have that definition, look at the BitMail project and see if their notion of "secure" has a lot in common with your notion. If they do, then it's time to take a look at the design of BitMail and its implementation. Look for areas where they do not closely follow their definition of 'security'. Every nontrivial program has some of these areas.
Once you have a good idea of how BitMail works, then it will be time to learn from their mistakes. In the process you will undoubtedly make mistakes of your own. Don't be disheartened: the only hackers who have not made completely humiliating errors are ones who have not been programming long. The trick is to never make the same one twice. :)
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
