Good reason not to obfuscate URLs (was: Fishing from PyPI ?)
Peter J. Holzer
hjp-python at hjp.at
Tue Aug 14 15:32:16 EDT 2018
On 2018-08-08 05:18:21 +0000, Gilmeh Serda wrote:
> And if you read email in blasted HTML, chances are they also have an
> image that they serve to you on their "beautiful" page you receive, an
> image whose link which may or may not be equally personalized, and more
> often than not has its origin on the spammer's server. in which case they
> also know *exactly when* you opened the email. If at all.
>
> Oh, and thank the developer of Outlook, and similarly badly constructed
> programs, for that preview pane. It's really helpful for all the spammers.
I hate to defend Outlook (which I think is a really bad MUA), but it
gets this one right: Properly configured[1] it does NOT load inline images
from web-pages, so you can't be tracked simply by opening a mail.
hp
[1] Not sure whether this is the default or whether our admins
configured it that way.
--
_ | Peter J. Holzer | we build much bigger, better disasters now
|_|_) | | because we have much more sophisticated
| | | hjp at hjp.at | management tools.
__/ | http://www.hjp.at/ | -- Ross Anderson <https://www.edge.org/>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://mail.python.org/pipermail/python-list/attachments/20180814/a6c728ab/attachment.sig>
More information about the Python-list
mailing list