"The message format is not dangerous. It is the message viewers that are dangerous in this particular regard."

Ah, I see. We should allow HTML but display it as plain text.

Or do what actually happened in the 20 years since that myth was actively doing the rounds: display HTML with sandboxed text/html viewers, as pine was doing back then, and as other systems eventually cottoned on to doing. By the time that the 2010s came along, the idea of sandboxing had taken root. Even in the middle 2000s, mail readers such as NEO and Eudora came with feature-reduced internal HTML viewers as an option instead of using the full HTML engine from a (contemporary) WWW browser that would do things like auto-fetch external images.

* https://www.emailorganizer.com/kb/T1014.php

▲

akimbostrawman 6 days ago | parent [-]

Thats a lot of effort compared to just plaintext that not only need none of this but also looks more professional, saves time and bandwidth.

The only people who care about HTML mails are scammer and marketing.

	▲	fragmede 5 days ago \| parent [-]
		As a reader (and sometimes sender) of emails, I don't know why wanting my emails to be formatted when I'm reading them, so that some text is bigger than others makes me a scammer, but ok. Personally, I think it's quite nice when the 2fa email has the code in giant font so it's easier to pick out.