[MlMt] Display only From *email address* in message list

[Bill Cole]

On 2025-05-22 at 19:55:53 UTC-0400 (Thu, 22 May 2025 16:55:53 -0700)
John Cooper <mailmate at lists.freron.com>
is rumored to have said:

> Quinn Comendant via mailmate wrote (at 4:29 PM on Thursday, May 22, 
> 2025):
>
>> On 22 May 2025, at 15:21, John Cooper wrote:
>>
>>> My suggestion meant to mention viewing the message pane and looking 
>>> at the return address of the message in its headers.
>>
>> That's what I'm currently doing, but it requires opening the message. 
>> If I know a message is fradulante, I'd avoid opening it entirely to 
>> avoid to potential of loading any malicious resources.
>
> Isn't MailMate excellent at blocking those?

Yes, but...

MailMate blocks loading of *remote* resources by default. It is possible 
to embed dangerous items in the message itself. MailMate does not 
automatically do anything dangerous on its own, but it does use Apple 
frameworks to do display, so it is subject to problems outside of 
Benny's control.

Benny is aware of the issues with display name fakery. At one point he 
addressed the problem of senders putting fake addresses in the display 
name by replacing the @ in the fake addresses with an emoji skull, to 
emphasize that they aren't the real address. As various tools started 
treating the tactic as spammy, spammers have largely abandoned putting 
fake addresses in the display name, relying instead on people expecting 
normalcy, not fraud.


-- 
  Bill Cole
  bill at scconsult.com or billcole at apache.org
  (AKA @grumpybozo at toad.social and many *@billmail.scconsult.com 
addresses)
  Not Currently Available For Hire