Home Page


Email & Spam

Security Terminology

Security Topics

VPN & Cryptography



Email Security and Spam Terminology

Zero Day Window


Bayesian Algorithm

Content and Connection control

Directory Harvesting Attacks

Email Encryption

Email Archiving

File attachments

Image scanning

Email Load balancing

Port forwarding and MX records

Reputation filters

Encrypted attachments

Grey Listing

Email Monitoring

Internal Email Security

Open Relay

Outbound email filtering

Per user quarantine area

Reverse DNS lookup & SPF

RFC Compliant emails


Spoofed email

Stopping spam for Networks guide

Email Throttling

What is Spam

Which Spam filter

Whitelists and Blacklists


Security Products Guide

Which Anti-Virus Software?

Which Firewall?

Which Spam Filter?

Which Internet Security Suite?


What is Guide

What is a Firewall?

What is a Virus?

What is Spam?


Essential Security Guides

Securing Windows XP Guide

Securing Windows Vista Guide

A Guide to Wireless Security



Top 8 Internet Security Tips

Why both, Firewall and Anti Virus?

Free or purchased security - Which one?





Internal Email Security


More than 70% of email is internal email. That is internal user’s sending email to other internal users. You need to secure internal email for the similar reasons you would secure inbound and outbound email. Some of the aspects you will secure internal email are for;



At the very least you should be filtering internal email for viruses, as well as monitoring and auditing for legal requirements.

To monitor internal email usually vendors provide a plug in as an add on to their email gateway security products. For example with Clearswift's MIMEsweeper you can purchase a plugin and install this on the exchange server. The plugin will capture any internal mail transferred from one mail box to the other on the exchange server. The plugin will then send this on to the spam firewall for scanning.

Without a plugin this can not be done because internal email is transferred from one mail box to another. This is all done within the Exchange server, and so this email never hits the gateway. The spam firewall is sitting to scan inbound and outbound email.

Further Reading

Wikipedia's guide to Email