Hacker News new | ask | show | jobs
by Sniffnoy 2957 days ago
So in short, if you have all mails set to display as plain text rather than HTML, there's no problem?
2 comments
jabot 2957 days ago
to quote the letter:

There are two ways to mitigate this attack

- Don't use HTML mails. Or if you really need to read them use a proper MIME parser and disallow any access to external links.

- Use authenticated encryption.

link
gsich 2957 days ago
Like every sane person should do.
link
tzs 2957 days ago
That ship sailed when email got named email instead of etelegram.
link
gsich 2957 days ago
Why do you think so? People are not forced to use HTML mails. I don't.
link
tzs 2956 days ago
Oh, I thought you were making the "email should only be text" argument, not the "you should avoid looking at the non-text part of multipart email" argument. I was addressing the former.
link
arcbyte 2957 days ago
I'm stealing etelegram for a new startup I'm going to make
link
jecxjo 2956 days ago
Aren't telegrams already "e"?
link