As Ray said, ColdFusion supports HTML email, which is how you make an email “pretty”. A quick down and dirty sample looks like this:

<cfmail from="bob@bob.com" to="someguy@email.com" subject="Check this out!" type="HTML">
    <HTML>
       <head><title>My Email</title>

       </head>
       <body>
           <!--- Style Tag in the Body, not Head, for Email --->
           <style type="text/css">
               body { font-size: 14px; }
           </style>
           This is the text of my email.
       </body>
    </HTML>
</cfmail>

That’s it, you’ve just sent an email. Notice how there is nothing preventing you from sticking in any old from email address you like? That leads me to my next point, in which you’re wondering how to avoid getting hit by Spam filters:

The short answer is: You can’t.

Oh sure, you can do intelligent things, like not including the word “VIAGRA” in your email (unless you’re trying to send out penile enlargement emails and want to know how to get past spam filters, in which case I’m disinclined to help), but let’s assume you just want to avoid obvious pitfalls.

I can think of two things that might help:

• Send out email from a domain registered to the from email address. I didn’t make the rules, but this one can be a pain. Ie., If you try to send out proxy emails for myorg.com, and your server does not host myorg.com, some spam filters are going to block it. What is usually done is to apply some branding to the from email, like this:

  <cfmail from="MyOrg.Com <DONOTREPLY@registeredsite.com>" replyto="bob@myorg.com" to="someguy@email.com" subject="Test" type="HTML">
</cfmail>

In this case the email is sent from your server at registeredsite.com, with a replyto being the proxy email address. Spam filters will probably be okay with this, since the from email address of *@registeredsite.com resolves to your server. Try to send out with bob@myorg.com in the from, and you’ll definitely run into some places that will block you.

• Use a physical server, not a cloud site. I’m running into this very issue right now, but if you don’t use a physical server that is located at a dedicated IP to send out your email, and if this server is not the originator of the email, some places are going to block it. This means no EC2 or Rackspace cloud site–sorry, some sysadmins are inclined to put down the banhammer on anything that originates from one of these providers, seeing as it is so easy to churn up your own little spam factory using EC2 or Rackspace for very little cost.

Even if you take these precautions, however, you’ll run into a situation where someone gets a hold of your domain name and drags it through the mud. They’ll send out thousands of emails to the internet in your name–or rather, in your domain’s name–and because of the insecurity of email, your domain will get added to someone’s blacklist after a thousand occurrences of hotlove4u@registeredsite.com hit the sysadmin’s inbox. There’s nothing you can do about it, either.

Or you can decide to run a cloud app and use a remote mail server. But some jokers will get one look at the originator being EC2 and will say, “Nope, sorry. Denied.” They don’t care about the legitimacy of your organization, only the origin of the email.

Email is an antiquated technology that has been rushed into mass usage before we really were able to think of a better protocol. As a protocol, it’s terrible….and yet we’re stuck with it, for backwards compatibility reasons. You cannot possibly avoid the spam filter. 95% of the email on the internet is junk mail, and never even reaches the intended recipient. Just absorb the enormity of that statistic for a moment, and pull your ideas back to reality. Many of the spam-prevention techniques being used today are unnecessarily aggressive, and create a great many ‘false positives’. You can shoot for, say 80% of your email being sent, but what it really comes down to is this: As soon as the email has been fired off, it’s completely out of your control. You can only take responsibility for so much.