moderated Re: Create +mute, +follow, and +unfollow group addresses, use in message footers. #suggestion


 

J,

Would that run a ... risk that people who get hold of an email ... but
are [not] the actual original recipient ... could act on that
recipient's account?
No.

To do anything of the sort they'd have to forge the original recipient's From address. If they can do that then they can use any of the email addresses, including +unsubscribe. This vulnerability is closed off by the fact that all such "email commands" (I call them) send a confirmation request with reply required.

Shal

Join main@beta.groups.io to automatically receive all group messages.