That's ofcourse the best solution.
But YOU have to make it secure and private. If you're not able to do
this yourself, then your best option is to choose a strong password and
change it often. Also you have to trust the machine and the browser
you're login in from, to be "clean" and secure. So no logins from your
friend's (hacker wannabe) laptop.
The private part may introduce a false sense of security. While it's
easy enough to set up authentication and encryption between your clients
and your mail server, it's pretty much a sure thing that some (and most
likely all) connections *between* mail servers will send stuff in the
Unless you're only exchanging mail with other servers that use the same
auth/crypto that you have, the privacy ends at the mail server. Of
course client privacy is much better than nothing (especially for
connections over scary coffee-shop Wi-Fi etc.) but end-to-end privacy
requires something else, like encrypting mail before it leaves the client.
On Thu, 09 Dec 2010 22:34:40 +0200, Kapetanakis Giannis
Also, that password you use to protect your email account? Make sure
you use it *only* for your email account, never for another account on
any other site.
Say you use your Gmail address to register for some crappy web site,
and you use the same password as for Gmail. When the crappy site gets
hacked, the attacker will look at the list of user email addresses and
passwords (this being a crappy site, the passwords aren't properly
hashed) and use them to try logging into Gmail and the other webmail
providers. With access to your email account, the attacker can then
perform a password reset on Amazon and your banking and other sites,
and really make things miserable...