This is actually a two part problem. The main concern is, while adding a new addressee, remote content is automatically blocked, as it should be, and you are asked to ve… (read more)
This is actually a two part problem. The main concern is, while adding a new addressee, remote content is automatically blocked, as it should be, and you are asked to vet the bona-fides, as it were, of the sources. Most of us would like to assume that we can trust a vendor not to piggy-back a malicious beacon into their messages, but that's easier than you think - or easier than THEY think, as well. For a lot of vendors, it's automatic that I just accept the default "accept remote content from above sources", but a few of them have looked suspicious - and indeed, I have tracked one back to a website in North Africa that had nothing to do with the email I was receiving. They also subverted my provider's IT department to the point where my requests for tracing were actually going to the criminal, not the IT guys. This is all because we have really no way of knowing the source of those addresses.
That brings me to the second part of the problem. I can't find anywhere in the setup where I can, once an address has been accepted, look at the remote content source list or edit it. I'd like to be able to call it back up and examine it, and maybe see if it has been changed, or correct an error like the inclusion of a bad source, or leaving out a good source erroneously (I did that once, and now I can't see part of the message).