On Sat, 4 Nov 2006 01:25:39 -0600, Erik Funkenbusch
First, there is really no such thing as "ssl encryption". SSL is a
protocol that supports a number of cyphers including DES, and AES.
Those are apparently believed secure enough to transmit financial
transactions by the million, so I'm not clear on exactly what their
objection might be.
Be that as it may, I can think of a couple of approaches to think about.
I use Debian here, so exim4 is my MTA. I'm pretty sure I know how to
make the following work with that, YMMV with other MTA's.
One way would be to make some custom routing rules to pass all mail to
or from a certain set of domains through gpg. You'd set it up similarly
to the way you hook spamassasin or anti-virus into the delivery chain.
Another way to do it might be to use ssh. When mail is going to domain
X, have exim4 run a script that starts up an ssh tunnel. Then deliver
to a port on the local machine that's actually tunneled to the SMTP port
on the other end. This is similar to how batched smtp or uucp mail is
Of course, for both of these you'd have to figure out a scheme for
getting the keys to both ends. But you have that problem already with
the plugin approach.
No, I haven't done exactly what you're asking for, but having used exim4
and smail for many years and made them do closely related things, it can
be done, IMO.
-| Bob Hauck
-| Have you had enough of George Bush yet?