When email is only a way of exchanging notes with friends and family, running inexpensive antivirus software is usually enough. But when email is routinely used for communication with your customers, employees, staff, students, vendors, and so on… it doesn’t take a genius to realize that your email needs more protection. You would be in a pickle if your email disappeared or became untrustworthy. What kinds of protection can you get for it? How much does it cost, how does it work, and how well does it work?
There is no single product on the market, even at the high end, with a 100% perfect capability for intercepting every threat to your email. However, if you are willing to look beyond the ordinary, it is possible to get an extremely high level of protection for your email without excessive hassle or cost.
Initial Strategic Decisions
Your email strategies have implications for the vulnerability of your email. If you have ever suffered the embarrassment (not to mention liability, if you run a business) of apologizing to angry customers, colleagues and friends about a virus that spread to them through your email, you are concerned about more than your own computer. You also want to avoid letting anything misuse your email to spread itself.
Many people use server based email accounts and access their email only through a web browser. This is especially common for personal accounts and free email services. Some businesses do it too, hosting email on their own servers, so that traveling workers need not carry their own PC with them. PCs with a standard software configuration can then be rotated among the workers as needed. If you use server based email, a virus that relies upon an email address list on the PC to propagate itself cannot find any such list. It may infect your PC, but that type of infection cannot spread itself from your PC. (The same goes for using browser-based email through your smartphone, tablet or iPad. In this article, I’ll generally only refer to your PC to keep it short.)
Many users prefer to run an email client on the PC so they can compose messages offline, download incoming messages, and keep message archives for offline reference. Hackers target the most popular email clients more often than other clients. As a result, simply choosing a less common email client can help you dodge some bullets.
Basic Protection
Even if you always leave your email on a server and get to it through a web browser, and even if the server attempts to block viruses, the bare minimum level of protection is antivirus software. Remember, just one infection is enough to give you a nasty headache. A few websites offer antivirus scans free of charge, but you are safer with antivirus software that runs on each PC, especially if you choose to download email to your PC. Antivirus software on your computer can not only scan for infections, it can screen incoming email to intercept infections before they become established.
When combined with a subscription for frequent online updates, this is a good first line of defense. It often comes in a bundle with a personal firewall program and software that blocks specific behavior from websites. If you have only “pocket money” to spend on email protection for each PC each year, this is probably what you will buy. To be safe, you will probably continue to use it even if you add heftier protection elsewhere. Symantec and McAfee sell two of the most widespread lines of software for this purpose, and issue security updates quickly as new malware appears in the Internet.
Add Spam Filtration
Shielding against viruses does not reduce the amount of spam. Published estimates say that up to 90% of email is spam. Wading through 100 messages to find 10 that are legitimate is a waste of time and capacity.
You can get antispam filters that run on your PC. Some email clients come with such a filter. It is likely to do a poor job of distinguishing spam from legitimate messages and may not allow tuning of its sensitivity. “Pocket money” can buy a more accurate filter, although it will still make a lot of incorrect decisions and its ability to “learn” greater accuracy is generally limited.
The next step up is a filter on your email server—the larger computer that initially receives email from the Internet and from which your email client downloads messages. If you are using email service provided by someone else, including one of the major free services, they are likely to run such a filter. Some hosting services offer a server based filter bundled into their hosting packages. They choose software priced so that with volume discounts, they can afford to cover the cost with part of their hosting fees. Alternatively, if you have your own email server, you can buy the antispam software of your choice. That gives you greater accuracy and better ability to tune the filtering.
Unfortunately, for spam filters up to this level of sophistication, the primary method used to detect spam can be defeated by a clever spammer. These filters look at contents of the subject line and body for each message, seeking words and phrases frequently found in spam. Have you ever wondered why a lot of spam contains an advertisement in a picture instead of text? It’s easy to analyze text. It’s hard for software to discern words embedded in a picture. Server based filters do more sophisticated analysis than PC based filters, but mistakes still occur.
These spam filters also check the sender against one or more commercial blacklists. In theory, blacklist providers know which domains have been sending spam. In practice, some blacklists are too easily tricked by “spoofed” headers in spam messages, or they blacklist the entire network location that sent the spam even if the IP address is shared by several unrelated domains. That causes some innocent domains to be blacklisted. Spam filters using the blacklist block delivery of legitimate messages from those domains.
One of my clients nearly lost an important customer because their server based antispam system routinely segregated his messages as spam. Even though they are using one of the leading enterprise class filters, for six months the customer was unable to get through. A more accurate solution is available, and it provides more than antispam and antivirus filtering.
Sophisticated Gateways
The next step upward is to subscribe to an email protection gateway. You can do this only if your email is on a domain where you manage the email server. To use a gateway, change the MX records for your domain to point to the gateway. This tells the Internet to send all your email to the gateway instead of to your email server. The gateway removes viruses, segregates spam into quarantine, then sends your server only the messages that it considers legitimate.
This goes beyond sending viruses and spam into quarantine. It reduces the email load your server has to handle, because quarantine is at the data center that provides the gateway instead of your equipment. One of the largest nationwide real estate firms in the USA, with about 40,000 email accounts, was planning to upgrade its computers and communication lines when it began using an email protection gateway. The gateway reduced the amount of traffic to its computers so much, the upgrade was no longer needed.
The best email gateways (not all of them, only the best) detect spam differently from other antispam filters. Instead of watching for key words or phrases used in previous spam, they analyze the attack patterns suffered by wide-open email accounts, tracing them back to specific source computer systems. Software analysis is augmented by round-the-clock human monitoring and analysis. This type of system can detect and begin responding to a new spam campaign within a few minutes, even when the campaign is executed through many hijacked PCs (a botnet). Accuracy is higher than when you run and perform frequent tuning on your own server based antispam system, and can easily be above 95% with hardly any tuning. Legitimate messages rarely get quarantined by the best of these systems, and little spam sneaks through.
The best gateways go a couple of steps beyond filtering, too. Some organizations need to prevent confidential or proprietary information from being sent to inappropriate recipients. Depending on the gateway you choose and the level of service you subscribe to, the service can filter outbound email in accordance with rules set by you. Without a gateway, this would need to occur separately on your email server.
Last and certainly not least, the gateway can provide disaster redundancy for your email. If your email server goes down, the gateway can store your email until the server is up again, then deliver all the email you would otherwise have lost. Some gateways allow you to access email through a web browser while your server is down, keeping you in business throughout even the worst disaster.
This type of system is used by the state college campus that hosts emergency responders after disasters in Port Arthur, Texas. They did not have it when a 2005 hurricane shut the town to all residents for about a month. Lack of communication made it hard to support for emergency workers, and especially hard to coordinate re-opening of the campus. The next time the town was shut for weeks by a hurricane, the campus relied on this system to help it keep going. Between emergencies, it has cut their incoming spam volume to a small trickle.
Cost Need Not Be High
That brings up the subject of cost. The college is able to afford the best available gateway service on its tight budget. Using the gateway allows the college to use less expensive arrangements for disaster recovery of its computer center, since email is always safe. Finally, the gateway helps the college avoid upgrades of its email capacity, since spam is almost completely eliminated from its incoming email.
Most small companies with just a few email accounts cannot afford a reasonably good server based system. Subscription to an email protection gateway for a company with five email accounts costs about as much as a monthly dinner out for one or two people at a modest restaurant. The more email accounts a business has, the lower the monthly cost per user. For businesses large enough to use their own server based system, a gateway is often either about the same price, or cheaper.
Although outbound filtering and email disaster redundancy may cost extra, at least one gateway includes those services at no extra charge and without binding customers into long term contracts. It is not just a highly reliable and scalable option, it is also surprisingly affordable and accessible for small organizations. (Contact me if you’d like to try it and I’ll help you. There used to be an alternative, but it got bought by a larger company and is no longer truly comparable.)
Bonnie Huval Personal Website Cookie Notice
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Privacy & Cookies Policy
{"id":null,"mode":"form","open_style":"in_place","currency_code":"USD","currency_symbol":"$","currency_type":"decimal","blank_flag_url":"https:\/\/bonniehuval.com\/wp-content\/plugins\/tip-jar-wp\/\/assets\/images\/flags\/blank.gif","flag_sprite_url":"https:\/\/bonniehuval.com\/wp-content\/plugins\/tip-jar-wp\/\/assets\/images\/flags\/flags.png","default_amount":500,"top_media_type":"featured_image","featured_image_url":"https:\/\/bonniehuval.com\/wp-content\/uploads\/2025\/02\/close-up-glass-with-money-as-tips-scaled-133x200.jpg","featured_embed":"","header_media":null,"file_download_attachment_data":null,"recurring_options_enabled":true,"recurring_options":{"never":{"selected":true,"after_output":"One time only"},"weekly":{"selected":false,"after_output":"Every week"},"monthly":{"selected":false,"after_output":"Every month"},"yearly":{"selected":false,"after_output":"Every year"}},"strings":{"current_user_email":"","current_user_name":"","link_text":"Leave a tip","complete_payment_button_error_text":"Check info and try again","payment_verb":"Pay","payment_request_label":"Bonnie D Huval","form_has_an_error":"Please check and fix the errors above","general_server_error":"Something isn't working right at the moment. Please try again.","form_title":"Bonnie's Tip Jar","form_subtitle":"entirely optional","currency_search_text":"Country or Currency here","other_payment_option":"Other payment option","manage_payments_button_text":"Manage your payments","thank_you_message":"Thank you *so much* for supporting what I offer here!","payment_confirmation_title":"Bonnie D Huval","receipt_title":"Your Receipt","print_receipt":"Print Receipt","email_receipt":"Email Receipt","email_receipt_sending":"Sending receipt...","email_receipt_success":"Email receipt successfully sent","email_receipt_failed":"Email receipt failed to send. Please try again.","receipt_payee":"Paid to","receipt_statement_descriptor":"This will show up on your statement as","receipt_date":"Date","receipt_transaction_id":"Transaction ID","receipt_transaction_amount":"Amount","refund_payer":"Refund from","login":"Log in to manage your payments","manage_payments":"Manage Payments","transactions_title":"Your Transactions","transaction_title":"Transaction Receipt","transaction_period":"Plan Period","arrangements_title":"Your Plans","arrangement_title":"Manage Plan","arrangement_details":"Plan Details","arrangement_id_title":"Plan ID","arrangement_payment_method_title":"Payment Method","arrangement_amount_title":"Plan Amount","arrangement_renewal_title":"Next renewal date","arrangement_action_cancel":"Cancel Plan","arrangement_action_cant_cancel":"Cancelling is currently not available.","arrangement_action_cancel_double":"Are you sure you'd like to cancel?","arrangement_cancelling":"Cancelling Plan...","arrangement_cancelled":"Plan Cancelled","arrangement_failed_to_cancel":"Failed to cancel plan","back_to_plans":"\u2190 Back to Plans","update_payment_method_verb":"Update","sca_auth_description":"Your have a pending renewal payment which requires authorization.","sca_auth_verb":"Authorize renewal payment","sca_authing_verb":"Authorizing payment","sca_authed_verb":"Payment successfully authorized!","sca_auth_failed":"Unable to authorize! Please try again.","login_button_text":"Log in","login_form_has_an_error":"Please check and fix the errors above","uppercase_search":"Search","lowercase_search":"search","uppercase_page":"Page","lowercase_page":"page","uppercase_items":"Items","lowercase_items":"items","uppercase_per":"Per","lowercase_per":"per","uppercase_of":"Of","lowercase_of":"of","back":"Back to plans","zip_code_placeholder":"Zip\/Postal Code","download_file_button_text":"Download File","input_field_instructions":{"tip_amount":{"placeholder_text":"How much would you like to tip?","initial":{"instruction_type":"normal","instruction_message":"How much would you like to tip? Choose any currency."},"empty":{"instruction_type":"error","instruction_message":"How much would you like to tip? Choose any currency."},"invalid_curency":{"instruction_type":"error","instruction_message":"Please choose a valid currency."}},"recurring":{"placeholder_text":"Recurring","initial":{"instruction_type":"normal","instruction_message":"How often would you like to give this?"},"success":{"instruction_type":"success","instruction_message":"How often would you like to give this?"},"empty":{"instruction_type":"error","instruction_message":"How often would you like to give this?"}},"name":{"placeholder_text":"Name on Credit Card","initial":{"instruction_type":"normal","instruction_message":"Enter the name on your card."},"success":{"instruction_type":"success","instruction_message":"Enter the name on your card."},"empty":{"instruction_type":"error","instruction_message":"Please enter the name on your card."}},"privacy_policy":{"terms_title":"Terms and conditions","terms_body":"Some of what I make available here took quite a bit of work to pull together. If you want to use any of the material on my website, please use it with attribution and a link to it. Please avoid putting it on websites with a policy of feeding whatever they get into their AI engines. (Facebook and X are examples of such content hogs.) They would steal my work through you, and neither you nor I would like what they do with it. Thanks!","terms_show_text":"View Terms","terms_hide_text":"Hide Terms","initial":{"instruction_type":"normal","instruction_message":"I agree to the terms."},"unchecked":{"instruction_type":"error","instruction_message":"Please agree to the terms."},"checked":{"instruction_type":"success","instruction_message":"I agree to the terms."}},"email":{"placeholder_text":"Your email address","initial":{"instruction_type":"normal","instruction_message":"Enter your email address"},"success":{"instruction_type":"success","instruction_message":"Enter your email address"},"blank":{"instruction_type":"error","instruction_message":"Enter your email address"},"not_an_email_address":{"instruction_type":"error","instruction_message":"Make sure you have entered a valid email address"}},"note_with_tip":{"placeholder_text":"Your note here...","initial":{"instruction_type":"normal","instruction_message":"Attach a note to your tip (optional)"},"empty":{"instruction_type":"normal","instruction_message":"Attach a note to your tip (optional)"},"not_empty_initial":{"instruction_type":"normal","instruction_message":"Attach a note to your tip (optional)"},"saving":{"instruction_type":"normal","instruction_message":"Saving note..."},"success":{"instruction_type":"success","instruction_message":"Note successfully saved!"},"error":{"instruction_type":"error","instruction_message":"Unable to save note note at this time. Please try again."}},"email_for_login_code":{"placeholder_text":"Your email address","initial":{"instruction_type":"normal","instruction_message":"Enter your email to log in."},"success":{"instruction_type":"success","instruction_message":"Enter your email to log in."},"blank":{"instruction_type":"error","instruction_message":"Enter your email to log in."},"empty":{"instruction_type":"error","instruction_message":"Enter your email to log in."}},"login_code":{"initial":{"instruction_type":"normal","instruction_message":"Check your email and enter the login code."},"success":{"instruction_type":"success","instruction_message":"Check your email and enter the login code."},"blank":{"instruction_type":"error","instruction_message":"Check your email and enter the login code."},"empty":{"instruction_type":"error","instruction_message":"Check your email and enter the login code."}},"stripe_all_in_one":{"initial":{"instruction_type":"normal","instruction_message":"Enter your credit card details here."},"empty":{"instruction_type":"error","instruction_message":"Enter your credit card details here."},"success":{"instruction_type":"normal","instruction_message":"Enter your credit card details here."},"invalid_number":{"instruction_type":"error","instruction_message":"The card number is not a valid credit card number."},"invalid_expiry_month":{"instruction_type":"error","instruction_message":"The card's expiration month is invalid."},"invalid_expiry_year":{"instruction_type":"error","instruction_message":"The card's expiration year is invalid."},"invalid_cvc":{"instruction_type":"error","instruction_message":"The card's security code is invalid."},"incorrect_number":{"instruction_type":"error","instruction_message":"The card number is incorrect."},"incomplete_number":{"instruction_type":"error","instruction_message":"The card number is incomplete."},"incomplete_cvc":{"instruction_type":"error","instruction_message":"The card's security code is incomplete."},"incomplete_expiry":{"instruction_type":"error","instruction_message":"The card's expiration date is incomplete."},"incomplete_zip":{"instruction_type":"error","instruction_message":"The card's zip code is incomplete."},"expired_card":{"instruction_type":"error","instruction_message":"The card has expired."},"incorrect_cvc":{"instruction_type":"error","instruction_message":"The card's security code is incorrect."},"incorrect_zip":{"instruction_type":"error","instruction_message":"The card's zip code failed validation."},"invalid_expiry_year_past":{"instruction_type":"error","instruction_message":"The card's expiration year is in the past"},"card_declined":{"instruction_type":"error","instruction_message":"The card was declined."},"missing":{"instruction_type":"error","instruction_message":"There is no card on a customer that is being charged."},"processing_error":{"instruction_type":"error","instruction_message":"An error occurred while processing the card."},"invalid_request_error":{"instruction_type":"error","instruction_message":"Unable to process this payment, please try again or use alternative method."},"invalid_sofort_country":{"instruction_type":"error","instruction_message":"The billing country is not accepted by SOFORT. Please try another country."}}}},"fetched_oembed_html":false}
{"date_format":"Y\/m\/d","time_format":"H:i","wordpress_permalink_only":"https:\/\/bonniehuval.com\/articles-and-essays\/technology\/email-safeguards-in-a-nutshell\/","all_default_visual_states":"inherit","modal_visual_state":false,"user_is_logged_in":false,"stripe_api_key":"pk_live_519vjE3HhU5m2IX7D6TDyZL7m2F5hu8GsJ5FSMdz5lokbMXEWqc2k7CHmCS7TiMfX1Wt7ZwAJ12HozPb9YoWA65iO00HwDOJx7Z","stripe_account_country_code":"US","setup_link":"https:\/\/bonniehuval.com\/wp-admin\/admin.php?page=tip-jar-wp&mpwpadmin1=welcome&mpwpadmin_lightbox=do_wizard_health_check","close_button_url":"https:\/\/bonniehuval.com\/wp-content\/plugins\/tip-jar-wp\/\/assets\/images\/closebtn.png"}