Your users probably understand the importance of safeguarding the data on their computers. But they don't always realise that some of that data is contained in Outlook. Here are a few suggestions you can share with them to help them protect that Outlook data.
Note: Since Exchange servers control certain options, users may need to check with their administrator if they run into something that's unavailable. Also, some of the options discussed here are available only to Exchange clients. If users are running Outlook on a contained system, those options won't be available.
1. Protect private items
If you're running Outlook on an Exchange server, you can mark some items as private when you create them. Other people can see the item, but not its details. For instance, if you create a private appointment, other users will see only Private Appointment. Other users won't be able to open the appointment to glean more information. To create a private appointment, simply click the Private check box on the first page of the Appointment form (it's in the bottom-right corner).
Anyone with permission to access your folder can open items unless you specifically deny them access. To do so, Select Options from the Tools menu and click the Delegates tab. Select a user and click Permissions. To hide private items from the selected user, deselect the Delegate Can See My Private Items check box.
2. Secure personal folders
You can password-protect your personal folders to slow down a would-be snoop. Just remember that a password isn't a total solution. Cheap password-hacking utilities are available to anyone with the inclination and a few bucks. A password only slows down a determined hacker while you're away from your desk.
To create a password for your Personal Folders file, right-click the top-level folder (which is probably Personal Folders) and choose Properties For Personal Folders. On the General tab, click the Advanced button and then click Change Password. If you had a previous password, enter it in the Old Password field. If not, skip this step. Then, enter the same password in both the New Password and Verify password fields. The Save This Password In Your Password List option lets you bypass the password process. Doing so negates the password, so don't select that option.
You can't password protect subfolders. It's everything or nothing.
3. Change logon security
Most systems allow unrestricted access to Outlook once you log on to Windows. That means that anyone can log in to your copy of Outlook while you're away from your desk. Password-protecting your personal folders certainly helps, but you might also want to restrict access to Outlook. You can do so by changing the authentication method Outlook uses. If you do, Outlook will require a password every time you open it -- even if you're already logged in to your system via Windows authentication. To change the authentication method Outlook uses, do the following:
- Open Outlook and choose E-mail Accounts from the Tools menu. Select View Or Change Existing E-mail Accounts and click Next.
- Choose the appropriate Exchange account and click Change.
- Click More Settings and then click the Security tab.
- Check the Always Prompt For User Name And Password option.
- Click OK, Next, and Finish.
- Close Outlook and relaunch.
Outlook will prompt you for your domain\username and password. For instance, if the server name is RabbitTracks and your username is SusanH, you'd enter RabbitTracks\SusanH.
Note: Use extreme care when changing this option. If you make a mistake, you'll lock yourself out of Outlook. In fact, you might want to discuss this decision with your administrator before committing to it. In addition, this option is available only for Outlook clients on Exchange Server.
4. Make your passwords strong
Some people make the mistake of using passwords that are unique to or known only to themselves -- or at least they think so. For instance, they use a social security number or their baby's middle name. These are weak passwords. Someone who knows you could quickly gain access to your data by simply guessing.
A strong password adheres to the following guidelines:
- Has at least seven characters.
- Includes both uppercase and lowercase letters, numbers, and a symbol character between the second and sixth position.
- Is a random collection of characters.
- Repeats no characters.
- Doesn't use consecutive characters, such as 123 or abc.
- Contains no pattern.
- Doesn't include any string or value that's familiar to you, such as a social security number, your pet's name, or your birthday.
Write down the password and keep it in a secure place it. Don't write it on a post-it and stick it to your computer screen. Don't laugh -- you'd be surprised how many people do just that, without thinking about the consequences.
Remember, most passwords are case-sensitive. Change your password frequently. Once a month isn't too often.
5. Protect against infection
Most people know by now that viruses are programs that hide inside other files, and that they can hijack e-mail, destroy data, and replicate themselves and try to infect other files or users. But knowing about the threat is one thing. Effectively protecting against it is another.
E-mail is particularly vulnerable. Harmful files can gain access through e-mail attachments and Web-based e-mail. Just opening a message can execute the virus file. The best protection is an antivirus program. After installing, you must remember to update the definition files frequently because new viruses are released every day.
6. Suspect attachments
Just because you know someone doesn't mean the attached file he or she just sent you is safe. If the sender's system is infected, the attachment may contain a copy of a virus, and the system sent it to you without sender's knowledge. The potential for infection is so serious that starting with version 2002, Outlook blocks most attachments by default. There are three blocking levels:
- Level 1: Outlook blocks access to potentially unsafe attachments. You can see the attachment with the e-mail message, but you can't open it.
- Level 2: You can't open the attached file from inside Outlook. Right-click the attached file and store it to a local disk.
- Level 3: Double-click to open the attached file inside Outlook.
If you receive a level 1 attachment and you need it, you have a few options:
- Ask the sender to zip the file and resend it, as zip files have level 3 clearance.
- Edit the Windows Registry to change level types for specific types of files. Do so only when you receive certain file types regularly. (Don't consider this option unless you're experienced with tweaking the registry.)
- Export the message to Outlook Express and open it there.
Keep in mind that the second and third options can release a harmful virus.
3%
2%
Move to linux, don't leave your security in Microshafts hands.