One comment


  • Paul F

    Some other things that help:
    * User should not have administrative rights on pc. Ideally, one should run the email client as a user with minimal permissions. On XP, you could set up a shortcut that uses run-as.
    * Text email really isn’t that bad. Outlook and Thunderbird both support showing email as text, and give you the option to switch to HTML on an email-by-email basis. This way, you view those only those emails in HTML that you trust. Of course, getting average users to buy into this isn’t easy. It takes some getting used to, but it works.
    * Email should run in a sandbox. Look at how much better Chrome has performed over the other browsers at CanSecWest, due to its sandbox approach. Shouldn’t email take the same approach.

    March 20, 2009

Leave a comment


This site uses Akismet to reduce spam. Learn how your comment data is processed.