Re: [Exim] Secure email->Webmail transaction question

Top Page
This message is part of the following thread:
M-\the complete thread tree sorted by date
M\MGreg Webster at <-
MMMNico Erfurth at ->
Delete this message
Reply to this message
Author: Kevin P. Fleming
Date:  
CC: exim-users
Subject: Re: [Exim] Secure email->Webmail transaction question
Greg Webster wrote:

> - The outgoing mailserver takes the client-id, matches it to an email
> address, sends a notification to the client that an email is waiting for
> them at a https secured webmail software. It dumps the email in a mailbox
> for the client to access

Keep in mind that SSL security on a web site (https) is one-way secure; only
data from the client to the web server is encrypted, I believe. The data coming
back from the web server is unencrypted, which is why any good secure commerce
site never displays your credit card number back to you (at least not the
complete number).



This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-[Exim] Secure email->Webmail transaction questionRe: [Exim] Secure email->Webmail transaction question->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)