How can I protect my email from being read by others using my computer?

Helping people with computers... one answer at a time.

Ask Leo! » General Computing » Encryption

When sharing a computer with others it's important to understand the level of trust you have. That dictates how much security will, and won't work.

How can I protect my email from being read by others using my computer? I use Outlook Express. I would like a password protection program. Is their any free or inexpensive programs available (and simple to use)?

•

Yes, but not really.

I know, that's self contradictory, but while we'll look at a technique for you to use, you're actually violating a fundamental principal that could render anything we do moot.

•

"If it's not physically secure, it's not secure."

That's a fundamental security principal that many people overlook or choose to ignore. If someone has physical access to your computer they could gain access to anything and everything you have.

And a shared computer, by definition, is all about shared physical access.

Now, the common response to this type of scenario is to use encryption, and indeed that's exactly the approach we'll take in a moment, but particularly in this shared computer scenario it's not really enough. If the other people using your computer are savvy and motivated enough, they could bypass what we're about to set up.

"If it's not physically secure, it's not secure."

I'll explain how after I describe the technique.

•

In a nutshell, I'd have you do what you would do if you were traveling with a laptop computer.

I'd create a encrypted volume using TrueCrypt, and place your email and all of you other sensitive data there. I'd only mount that volume when actually using the computer. The rest of the time it would be dismounted, and would just be so much random data to the other casual users of your computer.

The biggest issue, in my opinion, is actually Outlook Express. It's quite possible to move Outlook Express's storage location, but experience shows that it can sometimes be a little fragile to do so.

And as I alluded do, this is a fine time to start using that encrypted volume for more than just your email: use it as a place to keep anything you might not want others to have access to.

•

OK, so here's why it won't work.

I'll admit that I'm purposely overstating that just a little. To be fair, if the folks using your computer are trustworthy, then what we've just put into place will work, and will work quite nicely.

But it falls into the category of "keeping honest people honest. I mean, really, if they were truly trustworthy why did we have to do it in the first place?

Here's your worst case scenario that renders everything we've done completely pointless: one of your computer's other users intentionally installs spyware - a keystroke logger specifically - and captures the passphrase you use to secure your encrypted volume. And, while they're at it, they use or get administrative access to the machine to bypass any Windows-level security you might have placed on your account or the encrypted file.

They have the file, and they have the passphrase. They have your email - and whatever else you might have placed there.

There's simply no scenario on a shared computer to actually guarantee that your information is secure. The mere act of sharing a computer implies - no, requires - a level of trust. If that trust isn't there, then to put it bluntly, you shouldn't be sharing that computer.

"If it's not physically secure, it's not secure."

Article C3406 - June 4, 2008

Leo A. Notenboom has been playing with computers since he was required to take a programming class in 1976. An 18 year career as a programmer at Microsoft soon followed. After "retiring" in 2001, Leo started Ask Leo! in 2003 as a place for answers to common computer and technical questions. More about Leo.

Not what you needed?

You may also be interested in:

Ask Leo! - How do I keep my information on a shared computer private?
Ask Leo! - How can I keep data on my laptop secure?
Ask Leo! - I've lost the password to my Windows Administrator account, how do I get it back?

Recent Comments

12 Comments

I am running OE6 on XP Pro. I can 'see' old dbx files on a backup drive using Windows Explorer. On going through the normal import messages routine (I've done it many times in the past), OE cannot find the .dbx file I want to import. It is definitely there, I can see it in WE, OE6 can't seeit!

Thanks Fil

Posted by: Fil at June 16, 2008 3:31 PM

Thanks Leo and all respondents to my question. It appears that encryption is the most widely recommended solution. Appreciate your comments and help. Jim

Posted by: Jim Estes at June 20, 2008 6:37 AM

how can i protect my email to be read by other people using their computer?

Posted by: latoya at December 28, 2008 12:59 PM

Leo,

I have a similar problem and I am just looking for something that will work for me and my company. All of us in the office use GMAIL which has great security features. However we would like to take the extra step to insure that we are really protected. Reason being is because we from time to time have to send things across the internet like company taxes and we only want these to be able to be viewed by who it was sent too. So currently I am scanning the documents to adobe and password protecting the documents then emailing them. Is there a way to just encrypt it using GMAIL by downloading some kind of software?
Thanks,
Jeffery

Password protecting scares me, because application vendors have a history of getting it wrong, and the password being easily cracked. I'd, instead, encrypt using a standalong tool, and send the encrypted file. This article has more: How do I encrypt email?

- Leo
04-Mar-2009

Posted by: Jeffery at March 3, 2009 6:02 PM

My online friends told me they saw me online in the night and i don't browse in the night. it means somesone is using my email because we are using a general computer in the office.

Posted by: Omaejalile Destiny at May 28, 2010 1:23 AM

See all 12 comments...

Post a comment on "How can I protect my email from being read by others using my computer?":

Name: (Required - will be included when your comment is published.)

Email Address: (Required - will not be published.)

Remember Me? YesNo

Comments: (You may use HTML tags for style)

Before commenting, please...

READ THE ARTICLE. A comment that shows you didn't will be deleted and ignored.
Comment only on the article. Use the search box at the top of the page if you have a question about something else.
NO PERSONAL INFORMATION in the comment. No email addresses. No phone numbers. No physical addresses.

Anything that looks the least bit like spam will be deleted. Links to unrelated sites or links that appear to be primarily promotional will be deleted, or the comment will be deleted.
Don't ask me to recover lost passwords or hacked accounts. I can't. Those comments will be deleted.
I can't respond to every comment. And I can't vouch for the accuracy of others who do.

Read Why didn't you answer my question? for hints on getting an answer.
By posting a comment you agree to the Terms of Service. Don't agree? Don't post.
READ THE ARTICLE. A comment that shows you didn't will be deleted and ignored. Yes, I'm saying this twice; you'd be amazed.

Please wait. Your comment is being processed ...

Question? Ask Leo!
The Tip Jar: Buy Leo a Latte!

Categories | Full Archive
By Date | Business Card | About

Advertisements do not imply my endorsement of any product or service.

Copyright © 2003-2012 Puget Sound Software, LLC and Leo A. Notenboom
Ask Leo! is a registered trademark ® of Puget Sound Software, LLC
Terms, Conditions & Privacy
Product Reviews, Recommendations and Affiliate Links Disclosure

http://ask-leo.com/how_can_i_protect_my_email_from_being_read_by_others_using_my_computer.html