Sprint Business Connection seems to allow for anyone with web access to get into your email, as long as they know your username/password. Is this true? This makes me nervous, since passwords that I conjure up are, by their nature, hackable.

I noticed that basejet hotsyncs a set of encryption keys to the treo. This means that that you can only send mail to a device that has been physically hotsync'd to your computer.

Is there anyway that sprint BC can be made as secure as basejet (ie ONLY allow mail to be sent to a handheld device that has been physically hotsync'd to)?