>I looked at the PGP but it is not free for comercial use but they >are willing to pay for a solution.
It's the non out-of-pocket costs that will probably kill this project in practice. ie, trying to get the lawyers in-house to coordinate desktop-to-desktop encryption with all lawyers out-house. and then to actually use it. >Management of all those keys >and the user issues are the real problem in the long run. I was >thinking that there may be a soloution that worked like a PGP >key at the desktop that works at the server end. I think this >would encrpyt all the mail with the same key possibly ?? transparent server-to-server encryption is do-able with TLS, as I said. But again, it requires every mail server that your client wants secure mail for also to run TLS. and the mail is unencrypted from server-to-desktop. As always, security has an operating cost and inconvenience (which your client probably doesn't understand or want to live with), so you have to balance that against the security of the data you're trying to protect. Len http://MenAndMice.com/DNS-training http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
