1
zalfreid
Building e-mail system.Secutrity.
  • 2005/4/10 11:58

  • zalfreid

  • Just popping in

  • Posts: 21

  • Since: 2005/3/14


Please, i need help with e-mailing system. All I tried before are inside mailing modules. How to create such system that I could send mail outside, into web, not only inside portal i am creating. As i understood i need to set up mailing program first, like SMTP server or smth... Am i right?
Plus I need to make that mail system secured, using SSL.
Please if anyone could provide me some info regarding this, or send some links, I would really appreciate your help!!!

And I wanted to ask professionals such a question. Like I know sending e-mail through internet is not really secure even using SSL, so I got an idea from my employer, that it could be somekind useful against automated logging sniffers using such a mailing system. Like if you need to send to somebody any important info and not really big, like login and password. So he suggests to create a small program that converts that text to gif or jpeg hidden image(like images that are used in registration verification) and send it as attachment. So if mail goes as open text, not through SSL, it can be usefull, gives small security, cuz it goes not as text, but as hidden image. Is there any sence?
Cuz as I think, if "hackers" can intercept that mail, it is not gonna be a problem to open that jpg/gif, it is only usefull agains automated sniffers and spoofers collecting and logging open text.So I need an suggestion...

2
zalfreid
Re: Building e-mail system.Secutrity.
  • 2005/4/11 13:48

  • zalfreid

  • Just popping in

  • Posts: 21

  • Since: 2005/3/14


Nobody can't help me?

3
m0nty
Re: Building e-mail system.Secutrity.
  • 2005/4/11 14:40

  • m0nty

  • XOOPS is my life!

  • Posts: 3337

  • Since: 2003/10/24


you'd be better of searching google..

the only safe way of sending secure mail (and it's not completely secure but it's the securist way) is to use encryption and digitally signed/encrypted certificates that use various methods such as 3DES or RD2 etc etc to name a couple.. SSL only secures your connection once the mail as left the server it's not under ssl anymore..

i'm not sure u understand what a sniffer is either.. a sniffer monitors packets to and from each connection over a network either intranet or internet, the user can then filter out any non relevant packets from ip addresses so they can literally narrow it down to a specific ip and the users would be unaware that they are even being monitored unless of course u were the sys admin and noticed certain things but we'll not go into that it monitors and logs every single piece of data passed along so even if you used images etc a seasoned hacker could reproduce your email whether it's an image or text file just from the packets received.. but there are anti sniffer software outthere too..

4
m0nty
Re: Building e-mail system.Secutrity.
  • 2005/4/11 14:47

  • m0nty

  • XOOPS is my life!

  • Posts: 3337

  • Since: 2003/10/24


also i'd check with your countries regulations too if you're going the encrypted way, as i think if i'm not mistaken, it is illegal to use any kind of encryption in the usa.. lucky us in europe who can use any means of encryption we want.. so much for a free country huh.. doesn't that break quite a few amendments to the us constitution??

Login

Who's Online

178 user(s) are online (115 user(s) are browsing Support Forums)


Members: 0


Guests: 178


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Dec 31
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits