--- /dev/null
+Return-Path: <aaronecay@gmail.com>\r
+X-Original-To: notmuch@notmuchmail.org\r
+Delivered-To: notmuch@notmuchmail.org\r
+Received: from localhost (localhost [127.0.0.1])\r
+ by olra.theworths.org (Postfix) with ESMTP id 7F580431FAF\r
+ for <notmuch@notmuchmail.org>; Thu, 19 Jan 2012 19:26:07 -0800 (PST)\r
+X-Virus-Scanned: Debian amavisd-new at olra.theworths.org\r
+X-Spam-Flag: NO\r
+X-Spam-Score: -0.799\r
+X-Spam-Level: \r
+X-Spam-Status: No, score=-0.799 tagged_above=-999 required=5\r
+ tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1,\r
+ FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=disabled\r
+Received: from olra.theworths.org ([127.0.0.1])\r
+ by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)\r
+ with ESMTP id rGpML9AXnjBD for <notmuch@notmuchmail.org>;\r
+ Thu, 19 Jan 2012 19:26:07 -0800 (PST)\r
+Received: from mail-qw0-f46.google.com (mail-qw0-f46.google.com\r
+ [209.85.216.46]) (using TLSv1 with cipher RC4-SHA (128/128 bits))\r
+ (No client certificate requested)\r
+ by olra.theworths.org (Postfix) with ESMTPS id 009FF431FAE\r
+ for <notmuch@notmuchmail.org>; Thu, 19 Jan 2012 19:26:06 -0800 (PST)\r
+Received: by qadc10 with SMTP id c10so151809qad.5\r
+ for <notmuch@notmuchmail.org>; Thu, 19 Jan 2012 19:26:05 -0800 (PST)\r
+DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;\r
+ h=from:to:cc:subject:in-reply-to:references:user-agent:date\r
+ :message-id:mime-version:content-type:content-transfer-encoding;\r
+ bh=k83eLvp1b9blcJOVO0Ip778Si6nLEl/twSHaIaZtfu8=;\r
+ b=beN62QqV5q770xiLZsrM8eTm0jGmMULoA/7TEq76m8QrrcdDKbI8X9T5ZFkipizXAq\r
+ vWGX9AbBbvVbnfpZ04Xk2yMLPOWuVqv86mlX4h/wIPwhnB75mYcnRXDOf95HwZ7++ISg\r
+ mS2LSd5UQkcrB6um4a8HBj4rANChJZdR2Ru2E=\r
+Received: by 10.224.18.201 with SMTP id x9mr10349920qaa.61.1327029965475;\r
+ Thu, 19 Jan 2012 19:26:05 -0800 (PST)\r
+Received: from localhost (c-68-80-94-73.hsd1.pa.comcast.net. [68.80.94.73])\r
+ by mx.google.com with ESMTPS id o8sm3761452qaj.0.2012.01.19.19.26.04\r
+ (version=TLSv1/SSLv3 cipher=OTHER);\r
+ Thu, 19 Jan 2012 19:26:04 -0800 (PST)\r
+From: Aaron Ecay <aaronecay@gmail.com>\r
+To: Pieter Praet <pieter@praet.org>, Austin Clements <amdragon@MIT.EDU>\r
+Subject: Re: [PATCH] emacs: Quote MML tags in replies\r
+In-Reply-To: <87obtzuvmj.fsf@praet.org>\r
+References: <1326998589-37187-1-git-send-email-aaronecay@gmail.com>\r
+ <20120119224842.GS16740@mit.edu>\r
+ <m2vco72tf3.fsf@wal122.wireless-pennnet.upenn.edu>\r
+ <87obtzuvmj.fsf@praet.org>\r
+User-Agent: Notmuch/0.11+73~gd51b784 (http://notmuchmail.org) Emacs/24.0.92.2\r
+ (i386-apple-darwin10.8.0)\r
+Date: Thu, 19 Jan 2012 22:26:02 -0500\r
+Message-ID: <m2sjjb2gxh.fsf@wal122.wireless-pennnet.upenn.edu>\r
+MIME-Version: 1.0\r
+Content-Type: text/plain; charset=utf-8\r
+Content-Transfer-Encoding: quoted-printable\r
+Cc: notmuch@notmuchmail.org\r
+X-BeenThere: notmuch@notmuchmail.org\r
+X-Mailman-Version: 2.1.13\r
+Precedence: list\r
+List-Id: "Use and development of the notmuch mail system."\r
+ <notmuch.notmuchmail.org>\r
+List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,\r
+ <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>\r
+List-Archive: <http://notmuchmail.org/pipermail/notmuch>\r
+List-Post: <mailto:notmuch@notmuchmail.org>\r
+List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>\r
+List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,\r
+ <mailto:notmuch-request@notmuchmail.org?subject=subscribe>\r
+X-List-Received-Date: Fri, 20 Jan 2012 03:26:07 -0000\r
+\r
+On Fri, 20 Jan 2012 00:21:08 +0100, Pieter Praet <pieter@praet.org> wrote:\r
+> So, would I be right to assume MML tags in signatures are never\r
+> evaluated to begin with? Otherwise, there would still be a security\r
+> hole, no?\r
+\r
+I am thinking of MML tags that a user puts in their own signature.\r
+If that case is a security hole, then the hole is in the user=E2=80=99s bra=\r
+in\r
+and not in notmuch. :)\r
+\r
+--=20\r
+Aaron Ecay\r