Security Basics mailing list archives

Re: Web Mail Vulnerabilities

From: "Nick Warr" <nick () mobilia it>
Date: Fri, 18 Oct 2002 10:27:06 +0200

We use a combination of wu-imap
http://www.washington.edu/imap/
which had a scurity problem, but the latest version is secure (at least I
haven't seen any new problems for it)

there is also CYRUS
http://asg.web.cmu.edu/cyrus/
which is a nicely scalable IMAP server


and IMP webmail client
http://www.horde.org/imp/
They stay on top of their security issues, and is quite easy to run over
ssl.


Wu-IMAP and IMP work quite well for us. Give them a look.

Nick

----- Original Message -----
From: "Link, Jennifer" <Link.Jennifer () mail navy mil>
To: <security-basics () securityfocus com>
Sent: Tuesday, October 15, 2002 10:01 PM
Subject: Web Mail Vulnerabilities

We are looking at provided mail access via internet connection (home,
internet cafe, library etc.) and I'm trying to research what

vulnerabilities

exist for such access.  Any websites, books or personal experience you

could

provide would be VERY VERY helpful.  I'm just getting started so all
tid-bits are welcome!!

Jennifer M. Link
Phone:  703-602-8384
Fax:  703-602-7854
email:  link.jennifer () mail navy mil

Current thread:

Web Mail Vulnerabilities Link, Jennifer (Oct 16)
- Re: Web Mail Vulnerabilities Leo Security (Oct 17)
- Re: Web Mail Vulnerabilities Devdas Bhagat (Oct 17)
- Re: Web Mail Vulnerabilities Jeremiah Grossman (Oct 17)
- Re: Web Mail Vulnerabilities Brad Arlt (Oct 17)
- Re: Web Mail Vulnerabilities Nick Warr (Oct 18)
  - RE: Web Mail Vulnerabilities Ben Corman (Oct 18)
- <Possible follow-ups>
- RE: Web Mail Vulnerabilities John Canty (Oct 21)