Indeed, the system is a bit too restrictive … Not all sites, even those of imported companies, have images linked on https servers and sometimes it is not possible to do anything, except to open emails in another client. The “show” and “permit” options do not seem to work.
It happened to me with emails from Eaton, Texas Instrument, SunGuard, Genius Faber, Fiam, etc.
This thing is creating problems for all colleagues.
If you could do something … apart from the “white list” it would take something to choose whether or not to activate this type of security, at least until everyone (but really everyone) will use https