We've recently been experimenting with the quarantining Suspected Spam messages and submitting them to get Customer Specific Spam definitions created. One issue I've run into is not being able to see any of the URLs that are referenced in the messages. I definitely agree with the current configuration of disabling all of the HTML content in the message, but it would be nice if there were some way to at least see the domains of the URLs referenced in the messages. A good phishing message can look really good; the only way to tell the difference may be to look at the actual URLs of the links. In most cases this is not necessary, so perhaps this information could be even hidden under a separate button in the way that "Display Full Headers" is now. This would continue to provide the safeguard against the administrator accidentally clicking on a malicious link.
Thanks,
Matthew
