Tag Archives: gpg

Signed mail and Luminis 3

Posted on by
1

At work we currently use version 3.3.3 of the Luminis III platform by SunGard Higher Education.  This product handles our mail and portal needs for the time being.  While it is definitely not the best web-based mail client in the world I have seen worse.

Recently I had received a notice from a friend that he couldn’t read my signed e-mail in the web-client.  After having him forward the message to me as an attachment, I determined that the problem had to do with my digital signature.

I use Apple’s Mail client for OS X 10.5.  Currently I also have GPGMail by Stéphane Corthésy installed so that I can seamlessly use my GPG keys to sign and encrypt my e-mail.  After sending an unsigned message and finding out that it went through with no problems, I started investigating the options provided by GPGMail.

It turns out that I had checked the option to use OpenPGP/MIME by default.  Apparently this creates an message body that the Luminis III web-mail client can’t read.  So if you are running into this problem with a web-based client, check to see if your messages are going out as OpenPGP/MIME.

Moving into the cloud

Posted on by
Reply

clouds

One of the current hot topics in many technology circles concerns the cloud-computing model.  Wikipedia has the following definition for cloud computing:

a style of computing in which dynamically scalable and often virtualized resources are provided as a service over the Internet.

One of the biggest criticisms and concerns with this approach is the ownership, integrity, and security of the data.  At work we are struggling with this concept as well.  We are investigating moving our student e-mail into either Microsoft’s or Google’s online mail model.  From an economic approach it seems very cut-and-dried.  If we move the data for our users into the cloud then we cut down on our data storage, server and basic infrastructure costs.  However, the legal ramifications of this are interesting.

Faculty and staff data are to be kept inside the enterprise due to concerns over the possibility that their mail would contain confidential or sensitive data, such as grade information, student id numbers, etc.  What is interesting is that if a student is the recipient of an e-mail from a faculty or staff member that contains this information then the confidential or sensitive data has been placed in the cloud whether or not the faculty or staff member wanted it that way.

I have been dealing with this in a small way myself while trying to decide if I should move all of my personal mail into Google (which already hosts my mail accounts using the Google Apps services).  Do I rely on the large scale backup and storage of Google?  At first I was concerned that I might loose connectivity during a rare outage of the GMail system.  But I realized that I only check my mail using a full client on my machine at home.  Everywhere else I rely on an imap connection or the web interface.  So I have made the leap!

Now to work on making my GPG signature stuff work with GMail’s web interface.