Krzysztof Jurewicz is a user on You can follow them or interact with them if you have an account anywhere in the fediverse. If you don't, you can sign up here.

There is an article advocating that that “The only safe is text-only email” ( ). Why don’t the authors advocate also that “the only safe web page is text-only page”?

Perhaps the real issue is the verification of message authenticity, not the format used. If I cannot trust that an email originates from, let’s say, my bank, then why should I bother reading it and potentially following links at all?

@KrzysiekJ well that's kind of two parts... The most safe web page *is* a text-only web page 🙂
CDNs have been known to be pwnd in order to send out malicious javascript here and there. Text can hardly be malicious by itself (although there have been cases of exploits through font rendering, but I'd still count those as quite exotic).
Plain-text however is very "unappealing", thus the argument for it, no matter how strong or good on any axis, will always fail at "people don't like it"

Krzysztof Jurewicz @KrzysiekJ

@kunev A text-only page is the safest page in a sense, but it’s somewhat like stating that staying at home is the best way to not be hit by a truck. :)

@KrzysiekJ there are different degrees to it. It really depends on what you want to achieve. To extend your parallel, requiring megabytes of js for a website that should ultimately shows news in text format, is like saying you need to drive a truck in order to go to the corner store and buy a loaf of bread. Trucks are cool, but there are lots and lots of things they are not required for and might even actually be harmful when used in such cases 😄

@KrzysiekJ but big fancy trucks with horns an flames painted on the side are far more cool than walking those 50 meters to the store and carrying your loaf of bread in a bag on the way back.

Now when you're doing things that in essence are visual and interactive, like games or some fancy data visualization, obviously plain text gets you nowhere 🙂