Re: RE[2]: mailto URLs
Jamie Zawinski <jwz@netscape.com> Tue, 30 January 1996 12:10 UTC
Received: from ietf.nri.reston.va.us by IETF.CNRI.Reston.VA.US id aa09099;
30 Jan 96 7:10 EST
Received: from CNRI.Reston.VA.US by IETF.CNRI.Reston.VA.US id aa09094;
30 Jan 96 7:10 EST
Received: from list.cren.net by CNRI.Reston.VA.US id aa05459;
30 Jan 96 7:10 EST
Received: from localhost (localhost [127.0.0.1]) by list.cren.net
(8.6.12/8.6.12) with SMTP id GAA17630; Tue, 30 Jan 1996 06:38:36 -0500
Received: from urchin.netscape.com (unknown.netscape.com [198.95.250.59]) by
list.cren.net (8.6.12/8.6.12) with ESMTP id GAA17612 for
<ietf-822@list.cren.net>; Tue, 30 Jan 1996 06:38:09 -0500
Received: from gruntle (gruntle.mcom.com [205.217.230.10]) by
urchin.netscape.com (8.6.12/8.6.9) with SMTP id DAA12405;
Tue, 30 Jan 1996 03:36:19 -0800
Message-Id: <310E02C2.3ABC6F90@netscape.com>
Date: Tue, 30 Jan 1996 03:36:34 -0800
X-Orig-Sender: owner-ietf-822@list.cren.net
Sender: ietf-archive-request@IETF.CNRI.Reston.VA.US
From: Jamie Zawinski <jwz@netscape.com>
To: Harald.T.Alvestrand@uninett.no
Cc: Larry Masinter <masinter@parc.xerox.com>, pkeni@netscape.com, mb@ebt.com,
izzy@aac.twg.com, timbl@www0.cern.ch, mpm@boombox.micro.umn.edu,
ietf-822@list.cren.net, bhk@aac.twg.com,
Al Gilman <asg@severn.wash.inmet.com>
Subject: Re: RE[2]: mailto URLs
References: <199601300900.BAA24406@ns.netscape.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Sender: jwz@netscape.com
X-Mailer: Mozilla 2.0b6 (X11; U; Linux 1.2.13 i586)
X-Listprocessor-Version: 8.0(dev) -- ListProcessor by CREN
Harald.T.Alvestrand@uninett.no wrote: > > Note also that if you revise Mailto:, the ADs will want to have answered > the questions that were raised on Mailserver:, including: > > - How to ensure a proper From: address > (this is about THE most common question from mail admins these days; > the keyword is Netscape 2.0) I think the keyword you're thinking of is Netscape 1.1; in 2.0, we complain if the user's return address doesn't contain an "@" followed by at least one ".". Which I think is the best we can do and have it still work on systems that do address resolution in funny ways (for example, on YP/NIS systems, or heavily firewalled systems, where you don't have access to MX records at all.) > - How to (request to) apply signature functions to the message > - How to make sure the user is aware of what he is doing > (or is getting done in his name) In the case of mailto: URLs opened with GET, this is no problem, since all this does is bring up a message composition window, with certain fields initialized; the user then has the ability to edit and review what's going to happen, and any pre-delivery processing that would normally occur would occur in this case as well. In the case of mailto: URLs opened with POST (which sends the message directly), perhaps there should be some confirmation before sending the mail; I think there is only one difference between this type of POST and POSTs to all other URLs, and that is the inclusion of the "From:" header. > See http://domen.uninett.no/~hta/ietf/http-traps.html for some > examples of how to get mail sent from unsuspecting clients. I'm happy to report that none of these seemed to work on Netscape 2.0 (running on Linux 1.2.13, at least.) I don't particularly understand why the SMTP tricks didn't work, however; I assume it's because our HTTP headers are confusing the mail server... -- Jamie Zawinski jwz@netscape.com http://www.netscape.com/people/jwz/
- mailto URLs Dr. Mark K. Joseph
- Re: mailto URLs Mike Braca
- RE[2]: mailto URLs Dr. Mark K. Joseph
- Re: RE[2]: mailto URLs Mike Braca
- Re: RE[2]: mailto URLs Prabhat Keni
- Re: RE[2]: mailto URLs Larry Masinter
- Re: RE[2]: mailto URLs Harald.T.Alvestrand
- Re: RE[2]: mailto URLs Jamie Zawinski
- Re: RE[2]: mailto URLs Harald.T.Alvestrand