BitMail.sf.net v 0.6 - Secure Encrypting Email Client
Robert J. Hansen
rjh at sixdemonbag.org
Wed Nov 6 23:17:49 CET 2013
> can BitMail.sf.net as a p2p email tool for encrypted Email (and
> hybrid with IMAP-Email) be regarded as a reference model for
> research to create a secure Email Client? as it uses both, gnupg and
> openssl!
I would suggest figuring out very precisely what you intend by
"secure." Once you have that definition, look at the BitMail project
and see if their notion of "secure" has a lot in common with your
notion. If they do, then it's time to take a look at the design of
BitMail and its implementation. Look for areas where they do not
closely follow their definition of 'security'. Every nontrivial
program has some of these areas.
Once you have a good idea of how BitMail works, then it will be time
to learn from their mistakes. In the process you will undoubtedly
make mistakes of your own. Don't be disheartened: the only hackers
who have not made completely humiliating errors are ones who have not
been programming long. The trick is to never make the same one twice.
:)
More information about the Gnupg-users
mailing list