BillRoland
Premium
join:2001-01-21
Ocala, FL
clubs:
1 edit | reply to andyv420
Re: Poll: What is most secure Web-based email?
I just use point to point telepathy. Safest method I've found so far, YMMV.
--
"Don't steal. The government hates competition." |
|
Raphion
join:2000-10-14
Samsara
|  reply to sded
said by sded  :Note on gmail: In FF I get redirected to an http site after https login, and need to access the page again with https from the address bar for secure messages. PITA. Opera does it correctly. IE appears to also. I figured out a fix for this. Just change your Gmail bookmark to include the 's' for secure, like: »https://gmail.google.com/gmail . If you do that, you'll be directed to the secure inbox right after login. |
|
Brano
I hate Vogons
Premium,MVM
join:2002-06-25
Burlington, ON
 ·TekSavvy Solutions..
| reply to andyv420
I like »www.squirrelmail.org
Not sure if it's the most secure one, but you can use SSL to access the page and IMAPS when accessing mailboxes.
...and it's free  |
|
nonymous
join:2003-09-08
Glendale, AZ
| reply to sded
said by sded :The only secure Web based email I have used is gmail. Yahoo and Hotmail are not, except for login. Best is an ISP that supports secure SSL/TLS email for POP and IMAP, along with a secure webmail site (mine does). Or enable the secure POP interface for gmail if you need it. Note on gmail: In FF I get redirected to an http site after https login, and need to access the page again with https from the address bar for secure messages. PITA. Opera does it correctly. IE appears to also. just read the gmail disclosure or whatever it is called. lol
custom advertising? well how could it do that? |
|
leeb00
join:2001-08-09
|  reply to andyv420
SSL is great, but it only encrypts the email between you and your email provider! From that point the email hits MANY servers in an unencrypted state before it reaches it final destination.
Don't get me wrong, I insist on an email provider that has SSL logins and sessions. For me the best email company out there if Fastmail. www.fastmail.fm
The only really secure email solution is using PGP/GPG, and NOT storing your private key on any server other than your own PC, but I think this requirement would eliminate a web-based email solution. |
|
ghicken
Premium
join:2004-12-01
Taneytown, MD
| reply to andyv420
The original poster doesn't clarify what is meant by 'web-based'. I don't think he is talking about Hotmail/Yahoo!/Google but rather IMP or Squirrelmail type of application.
I used IMP when I ran a home-based web server. I sacrificed my static IP for affordable high speed so I switched my main email to Gmail and run it in https mode. I ran IMP over Apache in https. I will agree that it doesn't make plain text emails any more secure but I don't like POP or IMAP clients anymore and having access to a web-based email client is very convenient. The SSL and/or TLS connect to the server just makes me feel better.
Many people I emailed in the mid nineties used PGP and it was nice to sign and/or encrypt the emails often. I don't think a tool has been made yet to make encrypting emails a user-friendly option and I never trusted PGP since the government dropped their case against Zimmermann. |
|
sded
Premium
join:2002-11-04
San Diego, CA
·DSL EXTREME
| reply to andyv420
One of the main beneficiaries of SSL email is public wireless use. With Gmail, or SSL/TLS access to you ISP mailservers, at least you can send and receive email anywhere without others reading and exploiting it. And it is free and not difficult to administer. |
|
Daniel
Premium,MVM
join:2000-06-26
Pleasanton, CA
clubs: 
| reply to andyv420
I personally like Squirrelmail, and I use it as the interface to the mail server that I built myself. I'm using 256-bit AES for both login and all subsequent viewing of mail, and any sensitive email data is encrypted by PGP.
Between Squirrelmail and Horde/IMP, I'd have to say that Squirrelmail is probably more secure given no specific informaiton on the matter. I say this based solely on the fact that Squirrelmail is far smaller, i.e. less code than the Horde project that has many facets and directions.
Hope this helps...
--
dmiessler.com - grep understanding knowledge |
|
