[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

How to send signed email using the roundcube, dovecot, and postfix

Posted on 2014-12-23
4
Medium Priority
?
326 Views
Last Modified: 2014-12-30
I have Postfix, Dovecot, Roundcube, and mysql based on Centos 6.3 how can I set it up to send signed email?
0
Comment
Question by:Ashraf Hassanein
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 40

Accepted Solution

by:
noci earned 2000 total points
ID: 40517527
Web-based mail + the secret part of a certificate in general are not a happy combination.
The primary use of Web-Based mail (i.e. Roundcube) is that in can be used from a generic webserver (f.e. a hosted one) where you have no control over the underlying OS , hardware etc.

Those are bad places to leave the private part of certificates lying around. As you can loose them without knowing it.
And because the software needs a readable version of the pass-phrase that is available in the server too.
So basicly there is no valid use case to develop software for this, that is also secure.. (The basic premise why you would want mail encryption anyway.)

Signed & Encrypted email are safe because the underlying premise is that the passphrase never leaves the application that it is entered into.
0
 

Author Comment

by:Ashraf Hassanein
ID: 40517897
I believe I mixed alot of stuff together,  but to be more specific I want to be able to signed email only from rounscube (not encrypted ).
It more a small business email so I own the server and have a full control on it.
I that  possible.
0
 
LVL 40

Expert Comment

by:noci
ID: 40523516
Please define signing...:
The cryptographic variant is encrypting portion of the header that you "encrypt"/"hash" using a private/ public key pair so other ca verify you sent the mail. This needs the same pretext as encryption. (only you private key on the server) ... so see above.

Signing as in -- on a line with something beneath it...
That is easy. Go to settings, identity, and fill out the textbox for it. And mark it as html if that is needed.

Be aware to not send your autograph in a picture, otherwise anybody can photoshop that into any letter.
0
 

Author Comment

by:Ashraf Hassanein
ID: 40524755
Thank you for your clarifications in both posts, the first one explaind a lot
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The new Gmail Phishing Scam going around is surprising even the savviest of users with its sophisticated techniques.
The main intent of this article is to make you aware of ‘Exchange fail to mount’ error, its effects, causes, and solution.
The purpose of this video is to demonstrate how to use PicMonkey software to customize images for a Mailchimp campaign. Picmonkey is free and simple online software which can be used by users who don’t have robust editing software such as Photoshop,…
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question