View Full Version : Eudora and SSL
November 8th, 2007, 03:17 PM
I am using Eudora 7 and my ISP force the users to use SSL (port 995), why EAV doesn't scan my mails? I've tried many configurations, but nothing works. Someone can guide me through the procedure?
November 8th, 2007, 03:29 PM
Put the port number here, after 110 (separated with a comma)
November 8th, 2007, 03:31 PM
NOD32 v2 doesnt scan SSL. I dont think v3 does either.
November 8th, 2007, 03:33 PM
Thanks WSFuser for pointing this out.
November 8th, 2007, 03:47 PM
That's a shame.
Thanks for the answers.
November 8th, 2007, 03:57 PM
the reason it can't scan SSL connections for email is because of the encryption via SSL - if it was easy to hook into and scan the encrypted stream, then it would useless as a way of preventing sniffers from grabbing your private communications.
November 9th, 2007, 09:10 AM
As far as I know, AVG does it... (but it's the only good thing about this AV! ;))
November 9th, 2007, 09:39 AM
I'm not entirely sure how it could do it. it MUST scan AFTER the attachment/email "lands" on the client machine. I also read that they 'support ssl email connections'.
I don't think there is a way to scan the encrypted stream itself - SSL proxy is the only way I can think of NOT getting an SSL protocol error - but I'm no EXPERT - just a reasonably informed IT person!
The only way I think it could do it would be to work as an SSL proxy - ie, it sets itself up between the SSL port of the mail client and the server - during this proxy phase, it would have to decrypt and re-encrypt - I'm not sure if that's possible using the same keys, and could possibly break the ssl tunnel, so I would hazard a guess that a different ssl session would be used - ie...
For outgoing, email client encrypts to the ssl proxy - which un-encrypts - scans - then sets up a NEW ssl session to the server using a different ssl session and then delivers to the server encrypted. and coming FROM the server it would do the revserse...
Perhaps Marcos could explain how it is accomplished on the part of a product claiming to offer this facility.
vBulletin® Copyright ©2000-2013, Jelsoft Enterprises Ltd.
Copyright ©2002 - 2013, Wilders Security Forums