???
I have two operating systems. Win 98 & win 98 2nd.
I use Outlook Express v6… My service provider is Sympatico.ca and I’ve just upgraded to the new mail server, but found that the pop3 (pophm.sympatico.ca) uses a SSL port 995.
I’ve tried rerunning the mail wizard. I’ve tried doing a manual configuration. No luck. Before the server change the previous (pop8.sympatioc.ca) server was detected and correctly configured by the wizard. Now the wizard does not even recognize the accounts associated with the new (pophm.symatico.ca) server, but only detects my (pop3.myrealbox.com) server.
If I’m not wrong, avast mail scanner doesn’t support SSL (it has never had).
But, as far I know, you can uncheck the scanning of smtp (outbound) mail and use Stunnel with OpenSSL to receive mail in the pop3.
Take a look at the thread http://forum.avast.com/index.php?topic=10428.0 to see how to set up secure email with Avast!. Plus you can search on SSL to find more info. Since SSL/TLS email is encrypted and decrypted in the client, external virus scanners (including avast!) can’t read or scan it. Most virus programs just pass the traffic. The solution is to pass email in and out unencrypted from your client (outlook express, thunderbird, …) to a proxy program (stunnel) that does the actual ssl or tls encryption/decryption of the pop3/smtp email and communicates directly with the ISP server on the appropriate ports. Openssl is just the library of encryption/ decryption routines that support it. One time setup required using these free routines per the instructions in the thread.
Thanks folks, but there is too much work involved for partial results. Sympatico is not the only service provider out there who is pushing SSL and if I worked for avast I’d be looking for a workaround.
Note: sympatico intends to push all clients to the SSL servers and that will likely include a lot of avast users.
I don’t care if sympatico claims they scan my mail; I won’t trust them… Layers of security… miles to go before I sleep.
Actually, the use of stunnel provides a completely secure channel between your computer and the email server, just as using ssl/tls in your client would. Difference is that it also provides scanning of the email. Until more email clients (like outlook) provide means for embedding virus scanners into their products before encryption and after decryption, the common solution is not scanning the email. I use Thunderbird, connect to POP3 server port 995 via stunnel using SSL, connect to SMTP server port 25 via stunnel using TLS, all transparently. And providing a way to virus scan without something like stunnel would be a Thunderbird effort, not an avast! problem-unless avast! can crack SSL and TLS keys in real time.
where xxxx is your particular ISP (or modify for your pop3 and mail server)
And : certainly I don’t think avast! cracking is an answer. But other virus scanners don’t even tell you there is a problem with SSL/TLS email. And Avast! can’t solve the problem otherwise without being presented an interface as with Outlook. I have had zero problems with the stunnel solution. And the thread author even throws in how to include a spam killer in the process.
TB smtp setup looks like attachment. Should work as long as you can do secure smtp without scanning using TB with TLS checked or using OE with SSL on port 25. Also works with mailscanners like mailwasher and poptray. If your ISP uses real SSL for smtp (port 465), stunnel.conf will require a slight modification.