I thought the "meta" element is only valid in the "head" element, thus should never be executed, even if it appears in the HTML body?
Best Regards Andy Schmidt Phone: +1 201 934-3414 x20 (Business) Fax: +1 201 934-9206 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Matt Sent: Wednesday, March 22, 2006 06:31 PM To: Declude.JunkMail@declude.com Subject: Re: [Declude.JunkMail] OT: port forwarding That's surely a bug. Dave sent his message as plain/text and SmarterMail should be replacing the brackets with HTML encoding before displaying it as HTML so that it should not be a functional element when displayed., i.e. <meta http-equiv="Refresh" content="5; URL=http://www.mydomain.com"> If Dave had sent it as an HTML message, his client would have done the replacement for him. This should probably be reported to SmarterMail. There are a lot of potential consequences, for instance, virus scanners won't generally consider code in plain/text segments to be executable, yet it can be in SmarterMail webmail if it is working the way that you reported. Matt Gary Steiner wrote: >It is interesting how SmarterMail's web mail interprets Dave's message. >It sees the META statement in his message as embedded code, and runs it >when I read the message. > > > --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
