Autor: Marc Perkel Data: A: exim-users Assumpte: Re: [exim] Securing Email for the prying eyes of any government
Here's what I have in mind. First - these servers I'm talking about
being in distributed countries are also very good spam and virus front
end filters. The receive the email for the domains - clean spam and
viruses - then send the email encrypted to the real host server where
real email boxes are.
The domain holder who lets say is in the UK - could specify a list of
these servers in their MX record that was outside the jurisdiction of
the UK government. These servers would receive the email for the domain
- clean it - and pass it on to the real server. The domain holder can
choose from a list of these servers to use by setting the lowest MX
record to all chosen servers. The idea being that the corrupt government
wouldn't be able to tap all these foreign servers and at best would only
get a fraction of the email. Because it would be so hard - the
government wouldn't even try.
The idea here is that - yes - it would be nice is email was encrypted
end to end - but realistically - it's not going to happen. So - the idea
is to use existing techniques that doesn't require the world to change
in order to make it work.