[ale] sendmail question

Jeff Hubbs Jhubbs at niit.com
Mon Aug 21 12:49:10 EDT 2000 

Carl -

	> but they want to document that the material has 
	> never left their
	> internal network.  (IPO type stuff)

That's quite a sticky wicket.  

The simple fact is, regardless of the behavior of the DNS, sendmail, or any
other link in the chain, an e-mail will go where it's sent.  The
organization in question can walk around any such restriction by simply
adding an Internet recipient, deliberately or not.  

If they want to do as you say they say, they need to be relying on
desk-to-desk encryption and/or separate mail systems for internal and
Internet mail.  

- Jeff

> -----Original Message-----
> From: Carl Forsell [mailto:cforsell at roman.net]
> Sent: Monday, August 21, 2000 12:38 PM
> To: ale at ale.org
> Subject: Re: [ale] sendmail question
> 
> 
> but.. their concern is that since they look to us for DNS, is 
> it possible
> that their e-mail "loops through" our system, and thus a 
> sniffer here could
> intercept it.   I can't see any reason that it would, or that 
> it should be a
> concern,  but they want to document that the material has 
> never left their
> internal network.  (IPO type stuff)
> 
> 
> -----Original Message-----
> From: Robert L. Harris <Robert.L.Harris at rnd-consulting.com>
> To: Carl Forsell <cforsell at roman.net>
> Date: Monday, August 21, 2000 11:59 AM
> Subject: Re: [ale] sendmail question
> 
> 
> >
> >
> >Anyone with a sniffer sitting bewteen their email server and 
> the recepiant
> >could read the email.  Look into using PGP to encrypt email 
> as it is sent.
> >I do this and it works very well.
> >
> >Robert
> >
> >Thus spake Carl Forsell (cforsell at roman.net):
> >
> >> I have a customer who has has a Linux e-mail server 
> (sendmail) inside
> their
> >> firewall and  connects through ISDN to us for internet 
> access.  They have
> a
> >> concern about confidential documents that they e-mail 
> within the office.
> >>
> >> In the system described above, I can't see how the e-mail 
> could loop
> through
> >> us during it's travel - or be intercepted by "outsiders".  
> Am I wrong?
> Is
> >> there any way of documenting that a piece of internal 
> e-mail has never
> >> passed out side of their firewall?
> >>
> >> --
> >> To unsubscribe: mail majordomo at ale.org with "unsubscribe 
> ale" in message
> body.
> >
> >
> >
> >:wq!
> >-------------------------------------------------------------
> --------------
> >Robert L. Harris                |  Micros~1 :
> >Senior System Engineer          |    For when quality, reliability
> >  at RnD Consulting             |      and security just aren't
> >                                \_       that important!
> >DISCLAIMER:
> >      These are MY OPINIONS ALONE.  I speak for no-one else.
> >FYI:
> > perl -e 'print 
> $i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);'
> >
> 
> --
> To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" 
> in message body.
> 
--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.

More information about the Ale mailing list