Secure Windows Email Client

kellysp — Mon, 09 Oct 2023 09:50:55 GMT

Hello ISC2. I am looking for an email client to run on windows that is:

1. SAFE (no potential viruses, malware or data collectors)

2. Secure (emails stored locally are encrypted and connections to providers are encrypted)

3. reputable( not software written by dubious actors)

Re: Secure Windows Email Client

CraginS — Wed, 07 Apr 2021 16:58:07 GMT

@kellysp wrote:
Hello ISC2. I am looking for an email client to run on windows that is:
1. SAFE (no potential viruses, malware or data collectors)
2. Secure (emails stored locally are encrypted and connections to providers are encrypted)
3. reputable( not software written by dubious actors)

Sean,

What clients have you investigated, and what problems have you identified in each?

What e-mail hosts do you envision working with this theoretical secure client? After all, the email system has to be safe and secure end-to-end, not just your local client.

I also note that Microsoft Exchange Server is probably the most highly reputable mail server on the market, and look at what happened to them in the past month.

Craig

Re: Secure Windows Email Client

rslade — Wed, 07 Apr 2021 18:30:19 GMT

> kellysp (Viewer) posted a new topic in Tech Talk on 04-07-2021 11:57 AM in the

> Hello ISC2.

Oh, sorry. You only wanted responses from ISC2 staff?

Well, as long as I'm here ...

> I am looking for an email client to run on windows that is: 1. SAFE
> (no potential viruses, malware or data collectors)

What, just in the software itself? That's fairly easy. But I assume that you want
something that'll protect you from *incoming* malware? You probably need a
separate antivirus for that.

For a mailer, I tend to use Pegasus, ver. 3.12c. That's an *old* version, and it
doesn't like weird formatting that tends to hide malware and other nasties.
Unfortunately, it tends to crash when people get creative with sending all kinds of
oddly formatted HTML, but I'm willing to risk the annoyance of people who are
annoyed that I didn't respond to their latest marketing flyer, in order to have my
stuff stay safe.

> 2. Secure (emails stored
> locally are encrypted and connections to providers are encrypted)

OK, "locally encrypted" seems like you are really concerned about somebody
stealing your computer, and being able to have at it. In that case, the most secure
method of email is *not* to have it stored locally. Most Web-based email
systems are encrypted, at least between you and the mail server. (I mean, once it's
out bouncing around on the Internet, all bets are off.)

> 3. reputable(
> not software written by dubious actors)

Again, Pegasus is reputable.

======================
rslade@gmail.com rmslade@outlook.com rslade@computercrime.org
"If you do buy a computer, don't turn it on." - Richards' 2nd Law
"Robert Slade's Guide to Computer Viruses" 0-387-94663-2
"Viruses Revealed" 0-07-213090-3
"Software Forensics" 0-07-142804-6
"Dictionary of Information Security" Syngress 1-59749-115-2
"Cybersecurity Lessons from CoVID-19" CRC Press 978-0-367-68269-9
============= for back issues:
[Base URL] site http://victoria.tc.ca/techrev/
CISSP refs: [Base URL]mnbksccd.htm
PC Security: [Base URL]mnvrrvsc.htm
Security Dict.: [Base URL]secgloss.htm
Security Educ.: [Base URL]comseced.htm
Book reviews: [Base URL]mnbk.htm
[Base URL]review.htm
Partial/recent: http://groups.yahoo.com/group/techbooks/
http://en.wikipedia.org/wiki/Robert_Slade
https://is.gd/RotlWB http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/

topic Re: Secure Windows Email Client in Tech Talk

Secure Windows Email Client

Re: Secure Windows Email Client

Re: Secure Windows Email Client