| View previous topic :: View next topic |
| Author |
Message |
blackwave
Joined: 13 Feb 2003
Posts: 910
Location: OC, SoCal
|
 Posted: Sat Nov 15, 2003 7:36 am Post subject: Hushmail - Hushmail for Outlook ! |
 |
|
For those hardcore hushmail fans such as myself Hushmail has now a viable plugin for outlook 2000 (no xp yet) here:
https://www.hushmail.com/services.php?subloc=imap
for 30bux a year you get IMAP access to your hushmail files, document storage, etc...
For the last three years I have been collecting email and bogging down on their 96MB limit for premium customers... and wondering how the hell I was going to back up my email in case the servers ever were to crash and burn... well well well... now you can download your entire mailbox and back it up including document storage and all your encrypted data and save it in its encrypted form.. the plugin then goes and fetches your keys and prompts for the password and decrypts the files that you choose to open... very slick...
now I can download my files and remove the mail from the server that i don't expect to find usable anytime soon but would like to keep for archival purposes... whew... it is almost like getting a brand new acccount.
... the install is pretty simple but you want to make sure you have all your office updates before applying the plugin and also to have the IMAP account setup before installing the plugin... otherwise you end up looping around and uninstalling the plugin, hacking the registry, and uninstalling outlook and starting again...
w00t to the w00t.. 
_________________
-=BW=-
 |
|
| Back to top |
|
 |
Tacitus
Joined: 28 Feb 2003
Posts: 907
Location: 127.0.0.1
|
| Posted: Sat Nov 15, 2003 8:17 am Post subject: |
|
|
| Quote: | | To send mail, you need access to an SMTP server. Hushmail does not grant SMTP access, because it could be used to send Spam. In most cases your ISP will provide you with an SMTP server that you can use to send email from any email address you want. If you send email from your Hushmail address, though, you will not be able to send to other Hushmail users, because in order to reduce abuse do not allow email from Hushmail addresses into our network from external locations. The best thing to do is to send email from your regular ISP account, but specify your Hushmail address as a "Reply-to" address. Note that this will still allow you to take advantage of the full encryption features offered by the Hushmail for Outlook Plug-in. |
at first glance it seems interesting that they dont offer SMTP access (is SMTP after IMAP viable?) so sending messages has to go over external SMTP servers (possibly leading to revealing an identity)
| Quote: | | In order to decrypt or sign email Hushmail for Outlook must be able to connect to the Hush Key Server Network. If you are offline, this will not happen. If you wish to view your email whilst offline you can save the email in it’s plain text form. |
so you still need their servers to decrypt your rmail... which is good becuase you get local copies of your stuff that arent readble to anyone who might gain access to your box, but if hush crashes and burns and loses your keys/makes them unavailable for a period of time your archive is unreachable
would creating a local encrypted zone violate the concepts that hushmail is built around? i.e. something that is still "secure" by hush standards, but still resistant to failures of the hush network[/quote] |
|
| Back to top |
|
|
blackwave
Joined: 13 Feb 2003
Posts: 910
Location: OC, SoCal
|
| Posted: Sat Nov 15, 2003 8:29 am Post subject: |
|
|
| Tacitus wrote: | | at first glance it seems interesting that they dont offer SMTP access (is SMTP after IMAP viable?) so sending messages has to go over external SMTP servers (possibly leading to revealing an identity) |
I basically got it to backup my mail and since I was pretty much capping, it was a cheap alternative to sorting through thousands of pieces of mail. If you send mail over SMTP you are vulnerable to your connections server rules such as X-originating IP, client information, etc... I certainly have no intention to send from outlook... even though if you have an anonymizer smtp connection then it wouldn't be a problem.
| Tacitus wrote: | | so you still need their servers to decrypt your rmail... which is good becuase you get local copies of your stuff that arent readble to anyone who might gain access to your box, but if hush crashes and burns and loses your keys/makes them unavailable for a period of time your archive is unreachable |
The trick would be getting the private key to store locally since the public key is readily available the private key is not. It is using pgp and the private key is on the hush key server that is access with your passphrase.
_________________
-=BW=-
|
|
| Back to top |
|
|
|
