This is a longstanding issue and there’s not much that can be done about it… the only way to not share your email address when sending a PM by email is to remove it before sending your reply. Different email clients handle this in different ways. In gmail the email address of the person replying is not included here but in other clients it may well be.
There are these admin settings you can try:
I guess one thing we could do is obfuscate any emails shared via PM… but that would potentially cause problems in those cases when you are trying to talk to someone about email addresses!
# only add elided part in messages
if options[:elided].present? && (SiteSetting.always_show_trimmed_content || is_private_message)
options[:raw] << Email::Receiver.elided_html(options[:elided])
options[:elided] = ""
My question is:
what is the reasoning behind this being “always on” for PM’s? @zogstrip do you know?
and would it be a possibility to change this so admins would have the option to never show the trimmed content (and deny access to the “raw” email by clicking the envelope)? It’s pretty easy from a technical point of view so I’m not sure why this is not the case already.
I guess I wanted to keep the old behaviour but not sure it makes sense anymore with this setting. It’s a balance, on one hand you can leak email addresses, on the other hand the trimmer can sometimes remove important content.
I think that’s fine, but the trimmer isn’t 100% safe when it comes to “not leaking email address”.
Yes, me too. Next and hopefully last question: should we migrate a false value for always show trimmed content to private messages or to never. My idea would be to stay on the safe side and migrate it to never.