Of course they can. That's because once they take receipt of it, they own that copy of it. They can do what they want with it, just as if you gave them a word document off a file share. Seriously, take a look at digital signatures, encryption and DRM. Al _____ From: Deshwal, Chand [mailto:CDD@xxxxxxxxxxxxx] Sent: Tuesday, May 18, 2004 10:03 AM To: [ExchangeList] Subject: [exchangelist] RE: Internal e-mails can be edited http://www.MSExchange.org/ They can be modified once recepient gets it. This is for the internal mails wihtin the organization. CDD -----Original Message----- From: Mulnick, Al [mailto:Al.Mulnick@xxxxxxxxxx] Sent: Tuesday, May 18, 2004 6:49 PM To: [ExchangeList] Subject: [exchangelist] RE: Internal e-mails can be edited http://www.MSExchange.org/ ??? What do you mean they can be modified? In transit? Or once the recipient gets it? For either of those, I think you should read the RFCs (2821 and 2822; heck go back read 821 and 822 while at it). SMTP is not intended to be a secure protocol. In fact, far from it. If you need to verify that what you sent is what the recipient got UNALTERED, then you want to look into digital signatures. If you want to prevent reading of the data by others, then you want to look into S/MIME and PGP. Once the recipient has the message, they 'own' it. They can now do what they want with it. To prevent that, see the earlier parts which would cause them to have to create a new message vs. modifiying the original. If you want a little different functionality, you can look into the Microsoft digital rights management product. It can allow people to set permissions such as "do not print" and "do not forward" etc. Requires many upgrades from where you currently are. Al _____ From: Deshwal, Chand [mailto:CDD@xxxxxxxxxxxxx] Sent: Tuesday, May 18, 2004 3:54 AM To: [ExchangeList] Subject: [exchangelist] Internal e-mails can be edited http://www.MSExchange.org/ HI In exchange 5.5 sp4 at windows 2000 sp4 and Outlook 2000, all the internal e-mails sent/received internally can be modified. This is serious issue. If the e-mails are sent in Plain text, then the recepient cannot modify this. Any comments!!!!!!!!! ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------