On Sun, 6 Dec 2004, John Levine wrote:
I dunno about you, but when I'm using someone else's computer, I use
my web mail. I've seen public internet terminals in airports that
claim that they'll download your POP mail if you put in your password,
but I don't think I've ever seen anyone do that. It strikes me as a
rare scenario, getting rarer.
Well the solution for remote access to email is IMAP and it would be
good if email could be submitted as part of IMAP system, but that is
actually not quite so easy technically because you want to submit
email and include/reference part of existing message but dont want
to download that message to remote terminal, so complex system or
referencing part of the message has to be devised - this is something
that LEMONADE is working on.
But it seems to me many people do not trust those airport terminals with
their passwords. But perhaps solution (for 5-10 years from now) could
involve cryptography and smart cards - this would require standard for
such email authentication with in a way that intermediate system
(i.e. airport terminal) would never actually know the password or
retain access to account beyond user session.
---
William Leibzon
mailto: william(_at_)completewhois(_dot_)com
Anti-Spam and Email Security Research Worksite:
http://www.elan.net/~william/emailsecurity/
Whois & DNS Network Investigation Tools:
http://www.completewhois.com
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg