Securing Outlook and Outlook Express
Securing your mail client is just one of the steps necessary to help prevent email worms and viruses. If you have not already done so, visit the Email Help Center for tips on spotting malicious attachments and the do's and don'ts of email security. Also see Why Plain is Better to understand the risks of HTML-rendered email. The steps below apply to Outlook versions 2002, 2003, and 2007, and Outlook Express v6.0 and above.
If you use an older version, you may need to update your mail client in order to take advantage of these important security features.
To configure Outlook Express to send and receive email in plain text only:
Outlook 2002 email can also be read in plaintext, but require a registry edit in order to do so.
Microsoft has a Knowledgebase article that describes the necessary steps. For details, see: Plain text email in Outlook 2002
To make Outlook/Outlook Express more secure:
After making the necessary modifications to Restricted Zones, you will need to add Outlook or Outlook Express to this Zone.
Make sure you have all applicable critical patches and updates applied to your system. Visit the Windows Update site, choose Product Updates, and install any marked as "Critical". You should check for updates monthly.
To disable scripting in other mail clients, choose from the list below:
Eudora
Netscape Mail
Pegasus
Help thwart email threats. Do you have another tip for making any mail client a bit safer? Submit a Tip for securing your favorite mail client. Accepted tips will appear in the appropriate section of the Email Help Center.
If you use an older version, you may need to update your mail client in order to take advantage of these important security features.
To configure Outlook Express to send and receive email in plain text only:
- In Outlook Express, click Tools | Options
- Select the Read tab and then select 'Read all messages in plain text'
- Click the Send tab. Under 'Mail Sending Format' select "Plain text"
- Click "Apply" then click "OK" to exit the menu.
- Open Outlook 2003 and click Tools | Options
- Select Preferences | Email Options
- Select "Read all standard mail in plain text"
- Click OK to close the dialog box. Click OK again to close the menu.
- Open Outlook 2007 and click Tools | Trust Center
- Select E-mail Security
- Select "Read all standard mail in plain text"
- Click OK to accept the change and close the menu.
Outlook 2002 email can also be read in plaintext, but require a registry edit in order to do so.
Microsoft has a Knowledgebase article that describes the necessary steps. For details, see: Plain text email in Outlook 2002
To make Outlook/Outlook Express more secure:
- Disable all ActiveX and Java in the Restricted Sites zone. Do this from Internet Explorer by selecting the following menu items:
Tools | Internet Options | Security | Restricted Sites | Custom Level
Note: Just setting the restrictions to High will not work. You must choose Custom Level and scroll through the list disabling all options for scripting of Java or ActiveX. If you are unable to follow this step, it may be a good idea to ask an experienced friend for assistance.
After making the necessary modifications to Restricted Zones, you will need to add Outlook or Outlook Express to this Zone.
- Open Outlook Express or Outlook (if not already open)
Choose Tools | Options | Security
Select the Restricted Zone.
Make sure you have all applicable critical patches and updates applied to your system. Visit the Windows Update site, choose Product Updates, and install any marked as "Critical". You should check for updates monthly.
To disable scripting in other mail clients, choose from the list below:
Eudora
Netscape Mail
Pegasus
Help thwart email threats. Do you have another tip for making any mail client a bit safer? Submit a Tip for securing your favorite mail client. Accepted tips will appear in the appropriate section of the Email Help Center.
Source...