> Unless your network is on a PRIVATE NETWORK and the e-mail servers
> that are used for communications within the company are completely
> isolated and inaccessible from and to the public internet, spending
> money to purchase any kind of an SSL certificate for e-mail makes no
> sense whatsoever.
While there's nothing technically wrong with your description, I
disagree strongly with your conclusion (and agree with Scott).
For users of a hosting service offering SSL-encrypted webmail, there
is non-negligible protection against snooping by users of their local
Intranet. Assuming workstation security measures have been taken, the
most viable attack vectors are then against the hosting service or the
hosting service's ISP--where, indeed, messages and credentials can be
grabbed in clear text, but which is a *much* taller order, technically
and risk-wise, than hacking a known network that has no IDS or even a
full-time admin.
--Sandy
------------------------------------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
e-mail: [EMAIL PROTECTED]
SpamAssassin plugs into Declude!
http://www.mailmage.com/download/software/freeutils/SPAMC32/Release/
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
