Since you've got real stratum-1 NTP servers, you could skip the pool altogether and add them to the official NTP time server list.

AFAIU, the NTP pool is meant more for lower-stratum servers, like users on static-IP cable modems, so your machines wouldn't be doing as much good there.

PGP/GPG is overkill. Just drop messages that fail an SPF check. Spoofing is part of the problem here, and SPF was tailor-made to address spoofing.

If you do use PGP/GPG, you don't need an extra header for the signature; it's usually added as a small attachment, and better mail clients already pick up on that for verification.

"Sir, there are some gentlemen here who say they are from an organization called the BSA. They want to see the license certificates for those Windows CDs we've been handing out..."

• Server-side Sieve filtering/sorting
• File storage, optionally Web-accessible (I use this to serve up a simple, static-only Web site)
• Various authentication options (reduced-access password, one-time logins, passwords via SMS, etc.)
• Teh Google is not reading your mail, so you can put your tin-foil hat away :-)

Yeah, I thought so too---quite a slip for the Onion's usual pitch-perfect satire.

They should have gone with something like, "One day, I found her staring at herself in the mirror, wearing her older brother's football helmet..."