Google Answers Logo
View Question
 
Q: Handling suspicious emails ( Answered 5 out of 5 stars,   1 Comment )
Question  
Subject: Handling suspicious emails
Category: Computers
Asked by: marcdrogin-ga
List Price: $2.00
Posted: 21 Apr 2004 19:49 PDT
Expires: 21 May 2004 19:49 PDT
Question ID: 334115
When an email arrives and you hesitate to open it, you can read the
text by opening the Source window and scrolling down below the
transmission route information.  By doing this, have you "opened" the
email or is it actually still unopened?  I'd like to know if this is a
"safe" way to see text content of an email without having opened it
and possibly releasing any virus.
Answer  
Subject: Re: Handling suspicious emails
Answered By: aht-ga on 21 Apr 2004 23:45 PDT
Rated:5 out of 5 stars
 
marcdrogin-ga:

Thanks for your question about handling suspicious e-mails.

The method you describe is indeed a safe way to view the contents of
an email without the possibility of triggering a dangerous payload.

E-mails are simply text messages containing a lot of extra
information. An e-mail client, like Outlook Express, is able to take
this extra information from the text, and transform it into something
different such as an attachment. Until you allow Outlook Express (or
whichever e-mail client you are using) to do this, however, the
contents of the e-mail are just a collection of text characters.

The ability to view the Message Source is an important one, as it
essentially allows you to view the e-mail as a text message. Since it
is being viewed simply as plain text, no intepreter is running to
transform the extra information into something other than plain text.
So, for example, if there is an attachment, you will simply see in the
source a section of random characters preceded by a header stating the
encoding method used to transform the original binary file into text.

This is partly why it is a good idea not to use the Preview Pane
feature in Outlook Express, as the preview pane will convert any extra
information in the e-mail into attachments or code before displaying
the e-mail; in a case like that, any maliscious attachments or code
will indeed have the potential to run and ruin your day/week/year.

Of special note is how programs like Outlook Express handle the
presence of HTML tags in an e-mail. The standard action taken by
Outlook Express is to treat all HTML as valid, formatting the e-mail
using the HTML for display on your screen. However, the lax security
settings used by Outlook Express means that any dangerous HTML code
will also be intepreted and run; again, a good reason not to use the
Preview Pane. In the View Message Source approach, HTML coding is NOT
interpreted, it is simply displayed as text along with the rest of the
text in the e-mail. This way, you are safe: even if the e-mail
contains dangerous code, no program capable of executing that code
will be run if you simply view the message source.

If you are interested in a high level overview of how e-mail works,
please take a look at the following tutorial:

http://www.mailbox.net.uk/page.php?cid=44



I hope this helps!

aht-ga
Google Answers Researcher
marcdrogin-ga rated this answer:5 out of 5 stars and gave an additional tip of: $2.00
Thank you so much.  Excellent understandable quick answer.  And very
appropriate as I am using Outlook Express on a Mac.  I had asked an
Apple-authorized technician this question and he didn't know the
answer.

Comments  
Subject: Re: Handling suspicious emails
From: aht-ga on 22 Apr 2004 08:37 PDT
 
Glad to have helped, and thanks for the tip!

aht-ga
Google Answers Researcher

Important Disclaimer: Answers and comments provided on Google Answers are general information, and are not intended to substitute for informed professional medical, psychiatric, psychological, tax, legal, investment, accounting, or other professional advice. Google does not endorse, and expressly disclaims liability for any product, manufacturer, distributor, service or service provider mentioned or any opinion expressed in answers or comments. Please read carefully the Google Answers Terms of Service.

If you feel that you have found inappropriate content, please let us know by emailing us at answers-support@google.com with the question ID listed above. Thank you.
Search Google Answers for
Google Answers  


Google Home - Answers FAQ - Terms of Service - Privacy Policy