From: Ellen K. 

GroupWise appointments work like that too.

On Wed, 9 Mar 2005 22:20:22 -0800, "Rich"  wrote in message
:

>   I disagree.  You can have secure email.  I do not mean S/MIME or similar
which deals the security of the envelope over an untrusted channel not a
secure channel.  Think of it as similar to delivering a signed download
over HTTP vs. any download (signed or not) over HTTPS.
>
>   Whether you run multiple services on one machine or many isn't particularly
important.  The issue is whether these are multiple integrated parts of a
single system or multiple disjoint systems.  Take your example of group
calendar.  With Outlook and Exchange I don't have a group calendar.  They
probably can exist as shared folders but I don't use one.  What I do have
is a personal calendar that integrates with my email, my contacts, and the
calendar of others.  To schedule I meeting I select the people I want to
invite, optionally indicate who is required and who is optional, include a
conference room if needed.  I can pick a specific time or I can click a
button and find the times everyone is available.  There are more options
and features.  When satisfied I send it and everyone invited receives the
invite email.  They can accept, decline, or tentatively accept.  If they
don't decline it gets added to the recipients calendar.  If requested and
the recipient doesn't cancel the
>organizer receives this and it gets tracked in his calendar.  Now you could do
this with a separate calendar server but it would be one more thing to
administer and provides a worse experience for the users too.  As such I
think the result is more complex and less secure.
>
>Rich
>
>  "Geo"  wrote in message
news:422fbc7b{at}w3.nls.net...
>  Secure email is like secure telephone, its the phone not the system that is
secure. In other words you can put an encryption device on a phone and make
a "secure" phone call but the phone system itself is not secure.
So when speaking about an email server it's stupid to use the term
"secure" since it's part of an insecure system. You can have
secure email without the server (pgp).
>
>  On the "running separately" comment, I mean you can run a
group calender or
share folders or LDAP on a machine that is separate from the mail server.
Since the mail server must talk to other external machines it seems to me
that keeping it as clean and simple as possible is a more secure way to do
things.
>
>  Geo.
>    "Rich"  wrote in message news:422f2a9c{at}w3.nls.net...
>       Secure in this context means a secure channel.  You can provide email
access without exposing your whole email infrastructure to the Internet.
Someone using this would not be safe from you sending a stupid email.  I
didn't touch on content filtering.
>
>       All of the things I mentioned are part of the "critical
communications
channel" as you call it.  What do you mean by "running them
separately"?
>
>    Rich

--- BBBS/NT v4.01 Flag-5