On Mon 26 Oct 2020 at 20:48:26 (+0000), Joe wrote: > On Mon, 26 Oct 2020 10:10:10 -0400 Greg Wooledge <wool...@eeg.ccf.org> wrote: > > On Mon, Oct 26, 2020 at 01:49:05PM +0000, Curt wrote: > > > On 2020-10-26, Greg Wooledge <wool...@eeg.ccf.org> wrote: > > > > On Mon, Oct 26, 2020 at 12:38:36PM +0100, Michael wrote: > > > >> he is talking about filling in forms, etc. that are part of the > > > >> html email. guys, ever heard of the <form>...</form> html tags? > > > >> that's what he means. > > > > > > > > But what would the form's Submit action be? > > > > > > > > > <!DOCTYPE html> > > > <html> > > > <body> > > > > > > <h2>HTML Forms</h2> > > > > > > <form action="/action_page.php"> > > > <label for="fname">First name:</label><br> > > > <input type="text" id="fname" name="fname" value="John"><br> > > > <label for="lname">Last name:</label><br> > > > <input type="text" id="lname" name="lname" value="Doe"><br><br> > > > <input type="submit" value="Submit"> > > > </form> > > > > > > <p>If you click the "Submit" button, the form-data will be sent to > > > a page called "/action_page.php".</p> > > > > > > </body> > > > </html> > > > > Yes, this is exactly my point. > > > > If you've received this form from a WEB SERVER, then /action_page.php > > refers to a script on that same web server. Or the equivalent of a > > script. > > > > But if you're just reading this form in a FILE on your LOCAL MACHINE, > > which is what email is, then what is /action_page.php supposed to do? > > > > And if the full URL is present, will the website not still require a > login before serving the page?
I don't know anything about the mechanisms that lie behind this, but I don't think it would be sensible to email a form with an absolute address on it. What happens when somebody mass emails a form with a typo in the address, and people send their completed information to one of these goog1e traps? Cheers, David.