Tracking links in Mandrill notification emails

(Simon Sapin) #1

Discourse sends notification emails in some cases when stuff happens, which is great, but the HTML version contains misleading links.

<p>To respond, reply to this email or visit <a href=""></a> in your browser.</p>

When rendered, it looks like a link to but it actually goes to an unrelated domain. To a path, of all things, called /track/click.php. This smells bad. Thunderbird (at least for me) shows a big red warning “This message may be a scam.”

Why is this the case? Who has access to the collected data? How is it used? Can it be disabled?

(Régis Hanol) #2

These tracking links come from mandrill, not Discourse.

(Jeff Atwood) #3

Simply disable that option in Mandrill.

(Jeff Widman) #4

Or set your own domains that you want to use for click-tracking using a CNAME:

(Simon Sapin) #5

I’m not admin on that instance, but they found how to disable this. Thanks.

(Régis Hanol) #6