I work for a law office and I have an idea to deal with our (rather
severe) need for secure email communications with clients. I use Exim at
home, but I am not familiar enough with it to know for sure if it is
capable of doing what I want it to do.
If anyone would take some time to prove to me that this could be done, it
could work out to some short-term contracting to get it set up.
My idea is:
- Client is assigned an id number and password
- Have outgoing lawyer->client communication sent to a specific email
address with a subject like: "[<client-id>] <Text_of_subject>"
- The outgoing mailserver takes the client-id, matches it to an email
address, sends a notification to the client that an email is waiting for
them at a https secured webmail software. It dumps the email in a mailbox
for the client to access
- The client connects to the webmail with his client-id and password,
reads the email and is able to respond via the webmail, which sends an
email from the client to the lawyers's mailbox on another server (running
Exchange). The email needs to be assigned a Reply-to header to the
secure-email address and the [<client-id>] section is added to the subject
line if it's not already there, so that it's easy for the lawyer to reply
to the secure email address and have the client notified.
Of course, every step of this email transaction would have to be
completely logged and stored away in a nice format.
Thanks for any info you can give!
Greg Webster
Systems Administration
and Support Technician
Alexander Holburn Beaudin & Lang
Barristers & Solicitors
