Eircom Mail servers

nitr0s

Eircom SMTP servers don't seem to support encrypted mail which dissapoints me slightly.
This isn't directed at you X_OR ;] but couldn't you have a word with whoever looks after them, and suggest they implement support for encrypted mail?
Maybe there is a policy against encrypted mail? I don't know, just guessing, but why isn't there support if you know?
I think if Eircom PLC take security serious, they should atleast consider it.

dahamsta

Define "encrypted email". Most email encryption apps I know of simply create an encrypted string from the email message. Unless Eircom mail servers are running odd filters - which, to be honest, I wouldn't be in the least surprised about - they shouldn't "see" the difference between an encrypted message and an unencrypted one. If you're talking about APOP however, that's not encrypted mail, it's a more secure "version" of POP that encrypts your password as it travels across the network, to deter packet monkeys, but the mail itself isn't encrypted. I'm not pointing this out to be anal btw, I just don't want to see someone thinking they're more secure than they are.

ecksor

I don't know why anyone would have interpreted that as a personal attack against me ...

I'm not interested in commenting on eircom policy here, and I have nothing to do with Eircom PLC policy (different business group).

nitr0s

Well, I was trying to send secure mail from my hushmail account to an eircom mail account and I couldn't send it securely.
As for APOP, thats only for checking e-mail on a pop3 server, so, thats not what I mean.
Fair enough X_OR that you don't want to comment on it.And you're right there was no attack at you, I was just asking you because you would probably know better than anyone about the question I was asking.

ecksor

<font face="Verdana, Arial" size="2">Originally posted by nitr0s:
Well, I was trying to send secure mail from my hushmail account to an eircom mail account and I couldn't send it securely.</font>

Er, that's what PGP is for. What service are you lacking from the mail servers? Define "secure mail" (as in, what makes it secure?)

wintermute

The reason that that didn’t work is because Hushmail is a proprietary email system running on a closed system. You can only send “secure” email to other Hushmail accounts. Once your mail leaves the Hushmail systems, it must conform to all the usual protocols – i.e. SMTP

nitr0s

Ah right, thanks wintermute.
X_OR:
PGP isn't secure.
Secure mail for me would be mail that whether or not it may be contained while in transit it can still only be read by the intended recipient.
I'm not talking with you on this one anymore, its pointless, don't reply unless you're a fool.I don't want to listen to you anymore, talk to yourself for all I care.
I just don't have the patience for someone like you and I'm telling you now.
I haven't read one post on this board from you that deals with security in a constructive manner, all i've heard from you is critisism, arrogance and paranoia...aswell as the pathetic bullying of Tom-TheBoxNetwork.
The so called "interview", which was malice and only intended to humiliate the man.
How big of you.
I found the interview funny, not because you courageously caught Tom out lying on this board, but because you were immature enough to tell us all with half a brain, somthing we already knew, somthing you're good at.
I don't want to know what you think, I don't give a toss for what you think, you know just about as much as Tom.
And If you want to go on one of your powertrips like you did with Tom-TheBoxNetwork, fine by me.
You can delete this post, you can ban me from the forum, do I look worried?
You have the illusion perhaps that you actually have power over people in this side of the world.So, you'll ban me if I tell you I know you know very little about security than you say you know? Have you got the brain capacity to remember what I said?.
Stick to it, I don't want to ****ing hear anything from you, you pompous twat.
In fact, I invite you to ban me, you pathetic arrogant, miserable little man.
*g*
mail me, and we can discuss matters between ourselves instead of being big kids and having people read this **** coming out of your mouth.

nitr0s@hotmail.com

dahamsta

[Steps over the *****ing in confusion.]

Forget about X_OR and explain that to me - why isn't PGP secure? Ok, now that the daddy has flown the nest to Hush, we probably can't trust NAI anymore, but I'm not sure I follow you. I think I'd trust PGP more that I'd trust Hush anyway. At least I get to keep my keys with PGP. (I use Hush myself btw.)

cat5cowboy

>PGP isn't secure.
Secure mail for me would be mail that whether or not it may be contained while in transit it can still only be read by the
intended recipient.

What the hell are public and private keys for then?
Maybe you should take your own advise and take your personal comments to an email rather than a post.
The fact of the matter here is that you were too lazy and/or ignorant to look and see how hushmail works.

ecksor

PGP has it's problems, but it's "pretty good". If you are trusting the security of your e-mail to the mail servers you use, then you have bigger security issues and you need a better understanding of mail protocols. That post wasn't aggressive towards you, it merely asked for a clarification of what services you were looking for, as your original post didn't make any sense. Don't take out your frustration at your inability to understand some webmail system out on me.

If you wanted to converse via mail, you should have mailed me in the first place.

You can call me clueless all you want, and people can believe it if they want, it's really no skin off my chin. When you grow up and move on there'll be plenty more like you around to call me an idiot. By then I'm sure you'll be taking all the high payed jobs from me, seeing as you're so clever and all.

I guess it's my loss that you lost patience with me, after all, who is left to teach me.

Yoda?

spod

<font face="Verdana, Arial" size="2">Originally posted by nitr0s:

[snip]

In fact, I invite you to ban me, you pathetic arrogant, miserable little man.
*g*

[snip]
</font>

eh, calm down, breath, drink a little less coffee and listen to some nice soothing music.

Also, read up on mail transport mechanisms, pgp and hushmail a bit before lambasting people publicly.

True lack of encryption isn't a good thing with respect to mail. The thing is encryption is difficult, and unless your a spy or paranoid encryption is probably overkill in most cases.[1] On the other hand, things would be a little bit big brother ish (in the orwellian sense) if eircom or some other large isp insisted on all of their customers using proprietary security products which inter operated securely with hushmail..

As Wintermute pointed out husmail is not the same as pgp. If you want to send secure e-mail between Internet mail servers, as opposed to just between hushmail users then pgp is probably your best bet, but it's
still alot of hassle..

[1] http://www.cs.cmu.edu/~alma/johnny.pdf - Why Johnny can't encrypt, and the followup http://securitygeeks.shmoo.com/article.php?story=20010314043755598