[kubuntu-devel] Re: HTML by default in KMail

Scott Kitterman ubuntu at kitterman.com
Fri Aug 6 15:17:47 BST 2010

On Friday, August 06, 2010 10:04:43 am Jonathan Riddell wrote:
> On Fri, Aug 06, 2010 at 09:36:48AM -0400, Mackenzie Morgan wrote:
> > On Friday, August 06, 2010 06:28:30 am Jonathan Riddell wrote:
> > > KMail has large warnings in it's config box about security problems
> > > that might magically appear.  I can imagine it would help with
> > > phishing.  I could also imagine javascript security problems, although
> > > I'd hope javascript isn't allowed in Kmail e-mails I could be wrong.
> > 
> > I know of two security problems with HTML email.  Well, one security and
> > one spam.  The security one is, as you said, phishing.
> Of course if all e-mails are plain text you're just as likely to fall
> for a plain text phishing e-mail.

No really.  It's much easier to obfuscate links in HTML.

I just ping'ed Kees on IRC to see how the security team felt about this.  

Scott K

More information about the kubuntu-devel mailing list