Outlook Express is rather risky

[Robert Atkins]

Outlook Express, Outlook and Internet explorer are currently dangerous. There are currently 24 unpatched Internet Explorer/OE security holes, some enabling a full compromise of the target PC. The most common exploits install keystroke loggers and spam forwarding software onto your PC. PCs can be compromised by "promiscuous" web browsing with Internet Explorer or by viewing rouge email in Microsoft Outlook Express or Outlook.

Here is some advice from CERT on the matter, probably the most important reference is to http://www.cert.org/tech_tips/malicious_code_FAQ.html

Another alternative is to install the Firefox browser from
http://texturizer.net/firefox/index.html which provides better functionality as well as better security than Internet Explorer.

A secure alternative to Outlook Express is Thunderbird
http://www.mozilla.org/products/thunderbird/

[MikeyB]

Hmmmmmm, we've been discussing this at work.

Came to the conclusion (and read elsewhere on the net) that Firefox & Thunderbird (and other browers) only appear to be more secure, because a very low percentage of people use them comparied to the MS products, and so they are not targeted for attacks.
Who is to say if they are more secure? If they were the most used products, they would be the ones targeted, and problems would be found.

Most of these secutity problems are only found because people to target the MS products, and as they are the most widely used, it is very well reported.

One of the biggest problems seems to be ActiveX in IE, but other browers use a different method to do much the same, so there could be similar problems with them.

Only time will tell I guess.

[Robert Atkins]

I do not disagree with you. The difference is in attitude. IE has 24 holes: Microsoft does not acknowledge them and it is too slow to patch them

See

http://www.mozillazine.org/talkback.html?article=4960

Firefox exploits were acknowledged and fixed the same day.

[inthewildteam]

Quote:

Originally Posted by Robert Atkins

I do not disagree with you. The difference is in attitude. IE has 24 holes: Microsoft does not acknowledge them and it is too slow to patch them

See

http://www.mozillazine.org/talkback.html?article=4960

Firefox exploits were acknowledged and fixed the same day.

Agree completely! But then I would, using Firefox and Thunderbird woudn't I?

[Robert Atkins]

Well, Microsoft recommends Firefox too... See Microsoft's magazine Slate

http://slate.msn.com/id/2103152

[chopsmcp]

Quote:

Originally Posted by MikeyB

Hmmmmmm, we've been discussing this at work.

Came to the conclusion (and read elsewhere on the net) that Firefox & Thunderbird (and other browers) only appear to be more secure, because a very low percentage of people use them comparied to the MS products, and so they are not targeted for attacks.
Who is to say if they are more secure? If they were the most used products, they would be the ones targeted, and problems would be found.

Most of these secutity problems are only found because people to target the MS products, and as they are the most widely used, it is very well reported.

One of the biggest problems seems to be ActiveX in IE, but other browers use a different method to do much the same, so there could be similar problems with them.

Only time will tell I guess.

Ah, but 2 things. First, Mozilla is open source so exploits are likely to be acknowledged and fixed quicker. Second, when is it likely to not be the case that IE is the spammer/hacker's target of choice? No time soon - so the argument for switching stands.

[poolking]

Also I thought this problem had already been dealt with last week?