You face two separate problems when sending emails via the Internet. The most well-known problem involves the unencrypted nature of SMTP. The other problem is probably as big and ugly: identity spoofing, or hijacking, as shown in Figure 30.2. Figure 30.2. SMTP incorporates two problems: identity spoofing and clear-text messagesSo now we have two problems to solve:
Surprisingly, as shown in the next section, there are several ways to tackle the first problem, but these are more or less worthless if you don't tackle the much-more-difficult second problem. |