On Mon, Dec 12, 2011 at 11:01 AM, Murray S. Kucherawy <[email protected]> wrote: > Hi all, long-time lurker, first-time poster. > > I don’t work in the web browser business so much as I do the messaging > anti-abuse business. But this stuff has gotten my attention. Now that > RFC6454 is published, I have a few questions about its possible application > in my context. > > My first question (probably of several): What is the origin of an HTML > document when it’s viewed in an HTML-aware MUA because it arrived by email?
That depends on the MUA. In Gmail, for example, the origin is https://mail.google.com. It depends on the URL the MUA assigns to the HTML document contained in the email. Adam _______________________________________________ websec mailing list [email protected] https://www.ietf.org/mailman/listinfo/websec
