ZixCorp EMail Encryption
-
@Dashrender said in ZixCorp EMail Encryption:
What needs to happen is email servers just need to move to a default of not sending unless TLS is enabled - you could have the email system then send a note back to the user who can then decide if they want it sent unencrypted or not.
Could, but what's the point? Having it do it when available works perfectly for most people and only those with HIPAA requirements, like you, need to force it.
-
@Dashrender said in ZixCorp EMail Encryption:
Google didn't even for the use of HTTPS for gmail at the beginning. So yes, there was a problem many years ago. Is it still a problem today? I have no clue.
TLS for email is pretty old. Google's HTTPS is a red herring.
Yes I know it's a red herring - but it was an example of how long the technology has been there compared to when it was actually put into service.
But it is an unrelated one. What does Google using HTTPS for a web interface have to do with the price of milk, or the security of email?
-
@Dashrender said in ZixCorp EMail Encryption:
Zix was deployed what it WAS a problem, when there was a 50/50 shot that someone might NOT have TLS enabled. and those customers just continue to use it.
Was it tested back then, or just assumed then as well? How long ago was that?
-
As you're well aware, many places buy things out of fear.
I posted in the past about how Zix sales person actually threatened me when I refused to tell them what I was doing instead when I told them I wasn't buying their product. I would never buy their product unless required to do so by upper management, and even then only after they were fully aware of my disposition.
-
@Dashrender said in ZixCorp EMail Encryption:
As you're well aware, many places buy things out of fear.
And fear leads to insecurity.
-
@Dashrender said in ZixCorp EMail Encryption:
I posted in the past about how Zix sales person actually threatened me when I refused to tell them what I was doing instead when I told them I wasn't buying their product. I would never buy their product unless required to do so by upper management, and even then only after they were fully aware of my disposition.
So you actually know that you have a threat in your midst. Healthy fear should make you ban them. Did he threaten you physically?
They actually paid money to someone threatening you? That sounds like a huge HR nightmare.
-
Well we definitely got to the info that we needed, Zix is a scam that is using extortion to push their product. Avoid at all costs!
-
@scottalanmiller said in ZixCorp EMail Encryption:
@Dashrender said in ZixCorp EMail Encryption:
I posted in the past about how Zix sales person actually threatened me when I refused to tell them what I was doing instead when I told them I wasn't buying their product. I would never buy their product unless required to do so by upper management, and even then only after they were fully aware of my disposition.
So you actually know that you have a threat in your midst. Healthy fear should make you ban them. Did he threaten you physically?
They actually paid money to someone threatening you? That sounds like a huge HR nightmare.
He worded things just right to imply he's report us to whomever because we weren't using a HIPAA compliant solution - again, I think it was nothing more than a scare tactic to get me to sign up... hell Dell did the same thing with my SonicWall renewal - you're firewall will be back to 1998 levels, etc, etc, etc.. I told her to shut the hell up she had no clue what she was talking about and I wasn't going to accept her attempted scare tactics... while she didn't hang up on me.. the call was over quickly after that.
-
@Dashrender said in ZixCorp EMail Encryption:
He worded things just right to imply he's report us to whomever because we weren't using a HIPAA compliant solution...
Still, that's social engineering and a significant crime in the United States. That's a criminal act, and a security one at that. It's considered a form of hacking. For a "security vendor" to have done that... inexcusable. If they did that at the bank, that would have been an FBI call right there.
Clearly not a company you ever let in the door!
-
Hmm, I seem to have started a good topic here!
