Web Design Hull :: Web Design UK :: DRS Design - web design for Hull and the UK

Recommended anti-spam, anti-virus and firewall program

Kaspersky software has received high marks in several PC magazine reviews.

You can order the software as an online download and start using it right away by following this link:
Kaspersky Internet Security 6.0

Alternatively, check out the price at Amazon.

Features of Kaspersky Internet Security 6.0:

Real-time monitoring of all data streams, including email, Internet traffic and network connections
Protection from viruses, Trojans and worms
Protection from spyware, adware and other potentially hostile programs
Proactive defense against new malicious programs
Protection from network attacks and system hijacking
Blocking of popup windows and banners
Rollback of changes made by malicious programs on your computer
Blocking of links to phishing websites
Trainable spam filtration system
Support for Windows Vista and 64-bit systems

About spam

Some of the advice on how to avoid spam given on this page is specific to website owners, but even if you do not have a website you will still find good general advice here on avoiding spam.

Spam is commonly defined as unsolicited commercial email.

One of the issues you should consider if you are thinking of having your own website is how to avoid receiving spam.

Measures you can take against being spammed

There are ways in which you can protect yourself from being spammed yet still allow legitimate emails to be sent to you through your website. These vary in complexity and cost and include disguising the email address you display on your site, using a contact page, ideally protected by a password, and using spam filtering software on your computer.

The most common way for an email address to fall into the hands of those who send spam is because it has been found by an automated script. Those who send spam use such automated scripts to collect email addresses from the Internet. The script will crawl around the Net, following links from one website to the next, and crawling through newsgroups too, looking for email addresses that are displayed in the format yourname@whatever-your-site-is-called.com. Whenever such a script finds an email address it harvests it, and the address starts to receive spam.

Another point to be aware of is that when you choose your email address you should think carefully about whether it might be easy to guess. If your email address is at your domain name, say exampledomainname.com, then if you choose the address of 'sales@exampledomainname.com', you might receive spam as a result of the address being guessed. 'Sales@' is one of a number of very commonly used phrases, sometimes those who send spam will try taking a large number of domain names they already have, then try sending spam to different guessed addresses to see if any actually work.

For website owners: Using a contact page with a password

The best way of enabling people to contact you through your website by email without running the risk of getting spam is to have your web designer use a contact page and put the send message function behind a password, with the password displayed as a graphic.

Some email harvesting scripts look for open guestbooks and contact pages on websites, and have been set up to auto-complete the form with the spam message and then submit it. Adding the requirement of entering a password means that the script is prevented from sending you the spam as it will not be able to read the password (because the password is displayed as an image of text, not as text).

For website owners: Mangling your email address

This is a very simple option but one that can sometimes work, although it perhaps doesn't look as professional as using a contact page.

You display your email address on your website in a format that a human can still recognise as an email address, but which an email harvesting script cannot (usually). The address is disguised by appearing in a different form, such as:

yourname USE AT SIGN HERE whatever-your-site-is-called.com, or
yourname@NO-SPAMwhatever-your-site-is-called.com (remove NO-SPAM to email me)

Visitors to your site must un-mangle the email address before they can use it. A disadvantage of this approach is that if you attempt to mangle the address in a very common way (for example by inserting the words 'NO SPAM'), the mangling may fail. 'NO SPAM' is such an obvious phrase to put into the mangled address that the script attempting to harvest addresses may well be set up to automatically remove that phrase.

For website owners: Embedding your email address in a graphic

This is another kind of disguise for your email address in that the address is displayed on your web page, but as a picture of text and not as text. The more basic scripts used by those who send spam will not be aware of the text in the picture, they can only 'read' actual text characters.

As with mangling your address, this isn't an entirely safe approach, as if your site were to be actually looked at by anyone who sends spam then they have discovered your address. But most harvesting of email addresses by those who send spam is automatic.

So there is some risk of getting spam in displaying your address this way, but the risk has to be balanced against the ease with which your genuine enquirers can contact you.

Displaying your email address as a graphic without a 'mailto:' link has the disadvantage that people will have to open a new message window manually and then type the address, they cannot simply click on the address and have a new email message window automatically open. But using 'mailto:' links is the surest way of getting spam.

For all internet users: Using spam filtering software

Another option, perhaps in addition to the above measures, might be to use spam filtering and anti-virus software on your computer.

Kaspersky Anti Virus and Internet Security

Kaspersky software has received high marks in several PC magazine reviews. You can order the software as an online download and start using it right away by following these links:
Kaspersky Anti Virus 6.0
Kaspersky Internet Security 6.0

The above supplier also offers an option of ordering a CD to be posted out to you as well. Alternatively you can follow the Amazon links on the right to order as a software package to be delivered to you by mail.

Spam filtering programs can be set up to detect spam messages sent to you and then either delete them outright or move them to an email folder reserved for suspected spam. Spam filtering programs can usually be configured to be either more or less tolerant of suspect messages; if you set the program to too high a security level you run the risk, at least initially, of the spam filter wrongly identifying an email as spam when in fact it isn't. A good spam filtering program will 'learn' over time and with use. Every time you confirm to it that a suspect email is spam it's filtering process is refined and it becomes better able to correctly differentiate between what is and isn't spam.

Such programs also often allow you to create an approved list of safe email addresses; emails arriving from an address on the safe list are never classed as spam. You should be aware though that spammers often 'spoof', or forge, the address from which the spam has been sent. And if the spam message was generated by a virus on someone else's computer, then you may well receive spam from the email address of someone you know and trust. If anyone who has your email address in their computer's address book gets a virus on their pc, then they may well send you spam without being aware of the fact.

For this reason, amongst others, it is always a good idea to ensure that your pc is protected by an up to date anti-virus program. You can buy virus protection software from Amazon.co.uk, whose prices are often lower than those of high street retailers.

If you live in the USA you might be interested in the following:

Never 'unsubscribe'

Spammers often invite you to 'unsubscribe' from their mailing list by emailing them back with a request that your address be removed. You should never do this - the 'unsubscribe' option is not there to allow you to unsubscribe from their list. The spammers are simply hoping that this tactic will entice you into replying to the spam so that they know that your address is active.

Spammers send emails to many addresses which, whilst the address may still exist, are no longer being used. The emails sent to those addresses simply collect in an inbox somewhere but are never read. When you respond by asking to opt out of a mailing list (which you never opted into in the first place) all you are doing is telling the spammers that there is a person at the other end of that email address who is reading the emails sent to it. That will move your email address onto a list of email addresses which are known to be active, and the result is that you will receive even more spam.

Never click on a link in a spam email

People who send spam often try to get you to click on a link in the spam email. The link may well direct you to a website being run by the spammer, or some equally dubious third party. If your security settings on your computer are not secure enough then it is possible for a malicious website to infect your pc with a virus or perform other unwelcome operations, such as downloading a program which changes your dial-up internet settings to a premium rate phone number. Your best protection against this sort of malicious activity is by a combination of the following:

make sure that you have good firewall and anti-virus software installed on your computer... and keep it up to date
make sure that you regularly check for security updates to your operating system and web browser - if you are using Windows then visit the Microsoft Windows update site
never click on any link displayed in a spam email
if you use a dial-up internet connection, keep an eye on the phone number being dialed each time you use it
you could also raise your web browser's security settings, but this option may also cause some safe features of legitimate websites to not function correctly

Use 'blind carbon copy'

If you need to send an email to lots of different addresses and many of the recipients of the email do not already know each other's address, then it is good practice to respect the privacy of your contacts' email addresses by sending your email 'bcc' and not 'cc'. If you look at the fields into which you enter email addresses in your email program, you will see that 'bcc' and 'cc' appear as two separate options.

BCC means 'blind carbon copy' and it helps protect against getting spam as it conceals the recipients' addresses. Each of your recipients will receive the email, but they will not know who else the email has been sent to. By contrast, an email sent to multiple addresses as a 'cc' (carbon copy) will display every one of the other addresses that it has been sent to.

This is an especially bad idea when an email is a forward that has a request in it that everyone who receives it should forward it on to everyone they know. When the email gets forwarded on it multiplies exponentially and all of those email addresses eventually end up getting harvested by spammers. If you send an email to only 10 people, and each of them send it to 10, that's 100, and each of them send it to 10, that's 1,000... It doesn't take long before an email forward has been sent to literally millions of people. It only takes one of those people to be a spammer and all of those addresses are then on a spam list.

Using 'bcc' for bulk emails is much safer as it protects the email addresses of everyone you know.

Be aware that chain emails are often junk

As an aside, it is worth noting that most of the emails which request that you forward them on are quite simply hoaxes or junk. There are exceptions but the exceptions are rare. Hoaxes and junk chain emails waste bandwidth and time and do really slow down the internet for legitimate users. Common sense will often tell you that a chain email is a hoax, but if you are not sure, it is a good idea to check out the genuineness of an email forward such as a supposed 'virus warning' or chain letter before you forward it on.

If you want to check whether a virus warning is genuine, or read more about virus hoaxes, you can consult the McAfee virus information library here.

And for general information about junk chain emails a good resource can be found here.

If you do decide that the email forward is genuine and you want to forward it on, then good practice would be to forward it 'bcc' as explained above. If you are feeling particularly public spirited then you might also edit out any email addresses that others further up the chain have included. Many internet users do not appreciate the negative effects of using 'cc' for bulk forwarded emails and the forwarded emails you receive may well already contain lots of other email addresses due to the sender not understanding the importance of using 'bcc' instead.

Be careful when giving out your email address

If you want to avoid being spammed then you should avoid giving out your main or personal email address to all and sundry.

If a website requires you to sign up by giving an email address, then if you want to sign up with that site and are not sure whether they will respect your email address it is a good idea to create a new email address and give the site that one. There are many sources of free web based email available, such as Hotmail. If you create a new email address with such a site then you can give out that address; if the address starts getting spammed you can easily close it down or abandon it.

If you ever post to newsgroups or other areas of the internet where your email address is going to be visible to all then it is a good idea to either 'mangle' the address as described above, or use an email address created specifically for the purpose and not your main or personal address.