On Mon, Aug 09, 2010 at 06:09:07PM +0200, Vincent Lefevre wrote:
Now I wonder whether all the headers should be taken into account (at least by default). This may have security implications. First, user-defined headers should probably be disabled by changing the 1 into a 0.
yes, see my previously posted "mailto_allow" patch which does just this. me
Attachment:
pgpjWsHxNxhL1.pgp
Description: PGP signature