A
G
gfhujgfj
What anti-virus program stops/protects against getting a virus because
an email linked you to a malicious website?
Just yesterday I noticed an email that seemed to link to a web page.
Mind you, I did not *click* on an url link within the body of the
email. After opening the email I saw urls blinking just like in my web
browser. The email looked exactly like a webpage loading.
Now I know emails can have html code and links inside the email body.
I also believe that an evil website can inject a mean nasty if you
access it just once. But emails that automatically link to and load a
website? This is too much.
Signed, We don't need no stinking linking.
(Netscape browser. Windows computer.)
an email linked you to a malicious website?
Just yesterday I noticed an email that seemed to link to a web page.
Mind you, I did not *click* on an url link within the body of the
email. After opening the email I saw urls blinking just like in my web
browser. The email looked exactly like a webpage loading.
Now I know emails can have html code and links inside the email body.
I also believe that an evil website can inject a mean nasty if you
access it just once. But emails that automatically link to and load a
website? This is too much.
Signed, We don't need no stinking linking.
(Netscape browser. Windows computer.)
H
Hoosier Daddy
gfhujgfj said:
I use IE/OE so this may not help - but this combination allows you to
set HTML rendering in email (done by IE's engine) to the restricted
zone (security zone). Then you can set the restricted zone with META
REFRESH disabled. Some of these spams use META REFRESH
(which is supposed to refresh the page) to "refresh" to another page.
If you can, make sure to disable "META REFRESH" for whatever
HTML rendering engine you use.
I
Ian Kenefick
How about plain text email or Mozilla Thunderbird
? I myself useThe Bat! which is in my opinion teh best email client. It's not cheap
though!
ooops.. I seem to have wandered ever so slightly OT. Forgive me :-/
N
Noel Paton
Art said:
Maybe he just disable all the stinking protection in the stinking email
app?? - too many clicks????
--
Noel Paton (MS-MVP 2002-2006, Windows)
Nil Carborundum Illegitemi
http://www.crashfixpc.com/millsrpch.htm
http://tinyurl.com/6oztj
Please read on how to post messages to NG's
I
I forget
How about plain text email or Mozilla Thunderbird
The Bat! which is in my opinion teh best email client. It's not cheap
though!
ooops.. I seem to have wandered ever so slightly OT. Forgive me :-/
Does Thunderbird offer better protection if you are viewing HTML
email? I understand that HTML mail is dangerous, but it is a necessary
part of doing business and I only open mal from known sources.
I like Eudora better than BAT, but I grew tired of the bugginess and
switched to OE (yeah, I know it's the worst).
O
Offbreed
I said:
The most prolific sources of HTML mail seem to have the worst
understanding of proper internet security, so "known source" is no
protection, leaving aside spoofing the origin.
HTML e-mail is both irresponsible and stupid.
A
Art
Yes, but you should check your settings (see below).
It's only "necessary" because users have made it so out of ignorance.
Plain text is all that's necessary and should be used for email
messages. However, since you insist, the setting in TBird is under the
View menu --- Message Body as ...
where you can check HTML, simple HTML or Plain Text
Far better to use this HTML rather than Microsoft's, even though
I detest HTML email. Pegasus email also has its own HTML rendering
engine and is independent of the IE HTML rendering crap that OE
uses.
In the context of this thread, the other settings of importance
are under Tools ---- Options ---- Provacy ---- General
There the selection "Block loading of remote images" should be
unchecked. Also, "Allow remote images if the sender is in .."
should be unchecked. Also, "Block JavaScript in mail messages"
should be checked.
Just say "no" to MS internet apps and use third party apps that have
been designed with security in mind. Apps such as Pegasus and TBird
and Moz email (and probably others) do not allow the user to Run email
attackments, which means email doesn't have to be scanned for
malicious code. The apps can be used without fear by naive users.
Art
http://home.epix.net/~artnpeg
B
Beauregard T. Shagnasty
Art said:
I think you meant "should be checked." Eh?
A
Art
G
gfhujgfj
To protect against html email do these things:
Check to see you didn't accidently disable email protection
Block loading of remote images
Block JavaScript in mail messages
View email as plain text or simple html
Disable "META REFRESH"
These ideas are the best ideas I have read from the stinking internet.
Check to see you didn't accidently disable email protection
Block loading of remote images
Block JavaScript in mail messages
View email as plain text or simple html
Disable "META REFRESH"
These ideas are the best ideas I have read from the stinking internet.