Announcements
Voting is now open!
Members, make your selections in the annual (ISC)² Board of Directors election. Vote Now! Voting is open until Sept. 22.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
kellysp
Viewer

Secure Windows Email Client

Hello ISC2. I am looking for an email client to run on windows that is:

1. SAFE (no potential viruses, malware or data collectors)

2. Secure (emails stored locally are encrypted and connections to providers are encrypted)

3. reputable( not software written by dubious actors)

 

2 Replies
CraginS
Defender I

Re: Secure Windows Email Client


@kellysp wrote:

Hello ISC2. I am looking for an email client to run on windows that is:

1. SAFE (no potential viruses, malware or data collectors)

2. Secure (emails stored locally are encrypted and connections to providers are encrypted)

3. reputable( not software written by dubious actors)

 


Sean,

What clients have you investigated, and what problems have you identified in each?

What e-mail hosts do you envision working with this theoretical secure client? After all, the email system has to be safe and secure end-to-end, not just your local client.

 

I also note that Microsoft Exchange Server is probably the most highly reputable mail server on the market, and look at what happened to them in the past month.

 

 

Craig

 

 

D. Cragin Shelton, DSc
Dr.Cragin@iCloud.com
My Blog
My LinkeDin Profile
My Community Posts
rslade
Influencer II

Re: Secure Windows Email Client

> kellysp (Viewer) posted a new topic in Tech Talk on 04-07-2021 11:57 AM in the

> Hello ISC2.

Oh, sorry. You only wanted responses from ISC2 staff?

Well, as long as I'm here ...

> I am looking for an email client to run on windows that is: 1. SAFE
> (no potential viruses, malware or data collectors)

What, just in the software itself? That's fairly easy. But I assume that you want
something that'll protect you from *incoming* malware? You probably need a
separate antivirus for that.

For a mailer, I tend to use Pegasus, ver. 3.12c. That's an *old* version, and it
doesn't like weird formatting that tends to hide malware and other nasties.
Unfortunately, it tends to crash when people get creative with sending all kinds of
oddly formatted HTML, but I'm willing to risk the annoyance of people who are
annoyed that I didn't respond to their latest marketing flyer, in order to have my
stuff stay safe.

> 2. Secure (emails stored
> locally are encrypted and connections to providers are encrypted)

OK, "locally encrypted" seems like you are really concerned about somebody
stealing your computer, and being able to have at it. In that case, the most secure
method of email is *not* to have it stored locally. Most Web-based email
systems are encrypted, at least between you and the mail server. (I mean, once it's
out bouncing around on the Internet, all bets are off.)

> 3. reputable(
> not software written by dubious actors)

Again, Pegasus is reputable.

======================
rslade@gmail.com rmslade@outlook.com rslade@computercrime.org
"If you do buy a computer, don't turn it on." - Richards' 2nd Law
"Robert Slade's Guide to Computer Viruses" 0-387-94663-2
"Viruses Revealed" 0-07-213090-3
"Software Forensics" 0-07-142804-6
"Dictionary of Information Security" Syngress 1-59749-115-2
"Cybersecurity Lessons from CoVID-19" CRC Press 978-0-367-68269-9
============= for back issues:
[Base URL] site http://victoria.tc.ca/techrev/
CISSP refs: [Base URL]mnbksccd.htm
PC Security: [Base URL]mnvrrvsc.htm
Security Dict.: [Base URL]secgloss.htm
Security Educ.: [Base URL]comseced.htm
Book reviews: [Base URL]mnbk.htm
[Base URL]review.htm
Partial/recent: http://groups.yahoo.com/group/techbooks/
http://en.wikipedia.org/wiki/Robert_Slade
https://is.gd/RotlWB http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/

............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468