What are good security practices to protect from viruses using e-mail programs(Eudora,Outlook Espress,Yahoo)in a business setting? Operating system is Win98SE in a Gateway Essential. Thanks.

1) Common sense : Dont open any attachments that dont come from trusted sources
2) Micro$oft: Its a huggeee security risk to use Outlook, more than you can imagine. For one, a vbs [the most common virii] dont get a confirmation, they get active on Outlook Express/Outlook, Eudora is great if u disable IE viewer
3) If urs is a corporate setup, have ur sysadmin use a mail check on SMTP & IMAP/POP servers, stuff like Trend Antivirus is fabulous, saved mine & clients skin so often
4) Lastly, depending on the level of sophistication in your server setup here are some of the things I would do/have done
- switch SMTP server from 25 to something else
- switch to web based emails thru IMP/Horde [ http://www.horde.org ]
5) Have a centralized antivirus check if u receive a high volume of emails.

The person I am searching this info for has no control over what's done with the server at the workplace. What actually happened was her boss scan an e-mail she sent to him and he came back saying there was a virus in her computer. I suppose she can stop using Outlook and strictly use Eudora. What about using Yahoo mail at the PC she uses at work? Is the scanning option in their server good enough?

You've got me thinking now. What about using Outlook at home. Is there a better option? I also use Yahoo and Hotmail, but most of the time I use Outlook with Earthlink as my ISP. I think it goes thru Earthlink's server. Any comments on that?

If it got bounced back from the boss, then the boss' ISP/mailserver or possibly her own sendmail server is equiped with a server level scan.

If you are using Outlook, you should look into getting something that isnt nearly as bad, I've always recommended Eudora, on three counts
- security, Outlook is insecure as hell, nearly ALL virii propagated over the past cpl of years has been as a result of Outlook and its users [more so the users]
- Outlook is bloated, Eudora is lighter on the system
- Size of storage : Outlook, believe it or not takes about 160-190% more space than any typical email program, like a Eudora, and it also generates a lot more junk headers.

Yahoo's scans are at par with industry standards.

I'd suggest you use Eudora, or pegasus if you want something that wont make u vulnerable.

If you must really use outlook, either cos your ISP wont allow something else or any other constraints, make sure that you get an antivirus that has a realtime/mail scan option. I'd always recommend PC-Cillin http://www.antivirus.com. Though Norton has the same features, I dont like it one bit.

HTH

I posted this elsewhere, but I think it bears repeating.

Not all .vbs files are viruses, but 100% of unsolicited .vbs files probably ARE. That or spam, like Statica mentioned.
I have a small .vbs file I use to reclaim RAM from the lousy apps that don't release it when closed, and it's NOT a virus, although about 50% of all anti-virus scanners I've tried, think it is.
Simply put VBS (Visual Basic Script) is a computer language. It's recognizable by windows (default when installing windows), and can be disabled (uninstalled) through control panel, add/remove programs, Windows setup tab, Accessories section, it's called "Windows Scripting Host".
For those of you who have, or will be (it's just a matter of time) hit with melissa, or any of the other less malicious trojans, removing the Windows Scripting Host will usually stop the thing cold. Even if you click on that attachment of (insert favourite celebrity nude here), if you don't have Scripting Host installed, windows will ask if you want to install it to view the "picture". Don't.

So the thing to do is to remove Scripting Host so it will ask me if I really want to install Scripting Host when I open the attachment or e-mail containing virus? What's the purpose of Scripting Host then? Thanks.

Does InoculateIt has a realtime/mail scan option? At any rate I have to check with Earthlink and see if I can use Eudora? Thanks.

Yes, remove Windows Scripting Host, and IF you click on an attachment that is a .vbs script (99.999999% VIRUS!) it will NOT automatically run and infect your computer, you will be asked by a pop-up box if you want to install the Scripting Host first, and that way you KNOW it's not a picture, but a virus. REAL Pictures will automatically be viewed in your default viewer when you click.

Does this means it is 99.9% save to use OE if you uninstall Windows Scripting Host? Or would you still use Eudora? What about InoculateIt as a realtime/mail scan capability?

No, InoculateIT does not have realtime mail scanning. No, you don't have to call Earthlink - you can use *ANY* POP3/SMTP compliant e-mail client you want.

I use Pegasus, and have been using it for 5 years now. I won't switch to any other. Outhouse/Outhouse Express is insecure as hell, Netscape Messenger is a pain to manage multiple e-mail addresses with, and Eudora is a huge resource hog. There are many others out there, but I stick with what works and with what's free.