Aleks
asked on
Encrypt SMTP emails ?
Hi,
I have a web application (Classic ASP) hosted on an IIS 7 windows server. It uses local SMTP to send emails, and some of this emails include attachments.
Is there a way to send this emails encrypted ? If so, wouldn't the recipient require a password to view them ?
Would it be a better solution to have an external portal for emails to which users can login and view any messages they have sitting there ? this way no 'sensitive' information is sent over email ?
What is your view on this ?
Aleks
I have a web application (Classic ASP) hosted on an IIS 7 windows server. It uses local SMTP to send emails, and some of this emails include attachments.
Is there a way to send this emails encrypted ? If so, wouldn't the recipient require a password to view them ?
Would it be a better solution to have an external portal for emails to which users can login and view any messages they have sitting there ? this way no 'sensitive' information is sent over email ?
What is your view on this ?
Aleks
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I agree, that would be the easiest and most secure approach.
CDOSYS?? time to upgrade :P
CDOSYS?? time to upgrade :P
ASKER
Upgrade to what ?
CDO, it's a newer version of cdosys
ASKER
This is not CDONTS correct ? Ill have to check on it. What is the difference with CDOSYS ?
my apologies, ignore my last few posts, I thought you were using CDONTS, late night last night, brain not firing on all cylinders :)
you're fine using what you have
you're fine using what you have
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Great info, thanks !
If your email is exchange, you have a webmail portal already available (OWA) -- and it already requires an SSL connection.
You may need to forward ports and do some minimal setup (like installing a REAL certificate into your server), but it should be relatively easy.
Again, if your webserver and exchange server are on the same LAN (even if within a hosting company's LAN) you can probably dispense with worrying about sending the initial data encrypted (because it'll never leave the data center), but if they are in separate locations, force the webserver to send the mail using TLS (if not SSL over ports 587 or 465).
I re-iterate that because you appear to have control over the first 2 transport connections (web client to email server, and email server to other email server -- albeit still possibly the same server), I still think you are best suited to focus on the client access to the messages.
OWA should meet those requirements easily
Dan
IT4SOHO
You may need to forward ports and do some minimal setup (like installing a REAL certificate into your server), but it should be relatively easy.
Again, if your webserver and exchange server are on the same LAN (even if within a hosting company's LAN) you can probably dispense with worrying about sending the initial data encrypted (because it'll never leave the data center), but if they are in separate locations, force the webserver to send the mail using TLS (if not SSL over ports 587 or 465).
I re-iterate that because you appear to have control over the first 2 transport connections (web client to email server, and email server to other email server -- albeit still possibly the same server), I still think you are best suited to focus on the client access to the messages.
OWA should meet those requirements easily
Dan
IT4SOHO
ASKER