LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-26-2002, 01:07 PM   #1
lhoff
Member
 
Registered: Jun 2001
Location: Chicago
Distribution: Mandrake 10.0 Official
Posts: 181

Rep: Reputation: 30
Question: secure HTML email?


I've come to know that HTML formatted email is a high-risk thing, eschewed by most responsible users. But, I do value HTML formatted email for the text formatting, particularly for company press releases and so forth.

I would like to read HTML formatted email in my email client, but would like to do so in a "secure" manner -- where I would define secure as: no requests from this client app for http service should be honored. That would permit the text formatting to be rendered in the client, but would not load image files or other things embedded in the mail message. (Right?) What I don't know is: would this cutoff requests run by javascripts that might be embedded in the message (which would be okay...)? And what other types of things typically travel in HTML formatted email?

Galeon has a nice set of filters for HTML pages, but none of my mail clients have anything like what Galeon offers. However, I imagine I could setup iptables or hosts.deny to trap for mail client activity. What should I look for in how-tos and tutorials that would walk me through processing and allowing/denying requests coming from the mail client?

Thanks!

PS: I would also like to change the default browser that gets launched from Kmail when I click on a link. Currently, Konqueror is launched, and I would like to change that to Galeon. Any help would be appreciated -- Thanks again!
 
Old 03-27-2002, 02:43 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594
Just some ideas. Run a Junkbuster proxy which can block domains, dirs and/or file extentions, unfortunately it can't block javascript, so maybe run a sed script on your mailbox to change javascript to smptin else, or just disable javascript? Anyway, I can't think of anything right now that would harm Linux now, unless its something like window.open and try to access like /proc/kcore or something in /dev wich could have the same effect as C:\con\con under wintendo...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
i need a free and secure email provider thrustan General 12 03-10-2005 05:58 AM
Secure email (SSL vs. secure authentication) jrdioko Linux - Newbie 2 11-28-2004 02:39 PM
Email providers with secure POP jrdioko General 3 11-28-2004 11:06 AM
How to set up user account (secure email) . . . zthomasz Linux - Newbie 0 05-09-2004 12:47 PM
Secure email recomendations DavidPhillips Linux - Security 2 03-11-2002 09:52 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:01 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration