I guess I’m lucky here – my ISP uses VirusGuard, which “quarantines” anything suspicious incoming. (I use avast’s email provider too, just in case something slips through).

And it’ll let me go to the site and view any plain-text contents (not HTML or attachments) without the message ever “seeing” my own system. At that point I have the options to:

  • delete
  • clean (if possible) and deliver
  • deliver as-is

Interestingly, “clean” isn’t capable of simply deleting an attachment (the most common problem area) and delivering the message itself.