[Dovecot] Pointers for developing a proper encryption plugin?

Bradley Giesbrecht bradley.giesbrecht at gmail.com
Mon Jan 3 20:49:59 EET 2011


On Jan 3, 2011, at 10:05 AM, dovecot at moorooboorai.com wrote:

> Hi all,
>
> One thing that's always itching when I think about mail-servers, is  
> the storage of e-mail messages in (rather) plain-text.
> Meaning, any administrator with sufficient privileges would be able  
> to read messages not meant for them.
> Of course, PGP alike solutions exist, but that's not for the masses.
>
> In my opinion I would like to have e-mail messages stored encrypted  
> using a (strong) user-supplied password.
> That password would ideally be the same as the one the user logs in  
> with.
> So for me it's okay to place and enforce that requirement on any of  
> the users.

Would forgotten passwords result in lost emails?

// Brad


More information about the dovecot mailing list