E-Mail

[kolla]

Considering the topic of the thread and the question asked... are you really asking if there is any e-mail program for Amiga that supports encryption of e-mail using SSL, aka S/MIME?

[kolla]

Well, I guess it's either that or a web browser that supports logging into webmail using https:

YAM supports SSL, and I think OWB does as well but a lot of modern webmail interfaces seem to fail in OWB and other Amiga browsers unless you switch them to "old version" or similar...

There's SSL all over the place.. imaps, imap and smtp-auth using StartTLS, S/MIME... and by saying "YAM supports SSL" you mean exactly what? Does it handle chained certificates? Does it handle x509v3 certificates with subject alternate names? How about OCSP? Manual CRL handling.. what?

[kolla]

SSL != S/MIME

SSL encrypts the connection between (email) client and server during actual transport, nothing else. S/MIME encrypts the message end-to-end between the sending and the receiving email clients.

Network-wise, SSL works in the transport layer while S/MIME works within the message as a special form of MIME encoding (could somewhat be counted to the application layer).

Stop being so "theoretic", the OSI model is dead, the real world is pragmatic and SSL works in just about any layer you want it to, and is also used everywhere. Also it is nowadays known as TLS as you probably know. Anyways, this is beside the point, which was that original poster made a very vague question, and when people say "Product X supports SSL" it is damn hard to know what they're really claiming.

When using S/MIME, what do you think application developers do... reimplement certificate handling, or just use excisting BSD (or GNU) licensed SSL implementation to do certificate handling for them? Why does the openssl command have a "smime" subcommand you think?

[kolla]

@Zac67
Why are you lecturing me?

For what it's worth, part of my job is signing certificates for a larger CA and deal with support for those certificates, I do have ideas about how things work, thank you very much, including the difference between SSL and TLS.

My point was that it's pretty much the same software that is used for these things, whether you use it for setting up encrypted tunnels over TCP (strictly SSL), setting up encryptet tunnels from within a protocol (TLS), encrypting and signing email (S/MIME), signing zone files (DNSSEC), authentication over wireless (802.1X/WPA(2) enterprise with EAP-TLS/TTLS/PEAP) or wire, and heaploads more.

As for router, switches and hubs, please have a look at what companies like Cisco, Juniper and others deliver today, that's right - boxes that do a heck lot of mixing between layer two and three in the same box.

For what it's worth, I don't see the point in pushing this further, your view is correct on a principal, theoretical level, but internet technology is developed by pragmatists who use whatever technology that fits at any level they see fit. If you think that's all wrong, then I suggest you participate in IETF and do some serious humming