On Wed, 19 Jul 2000, Lee Howard wrote:
John, I thought that your filters checked for excessive header stuff. (?)
Only the MIME headers, not headers in general, and not in non-MIME
messages.
The Anomy filter (which I will soon be collaborating on) should do a
better job of this.
Anyway, something like this should do the trick, shouldn't it?
# ==============
DATEHEADERCOUNT=`grep -e "^Date:" -i | wc -c`
DATEHEADERFLAG=`expr 50 - $DATEHEADERCOUNT | sed s/[0-9].*//`
:0
* DATEHEADERFLAG ?? ^^-^^
/dev/null
# ==============
Obviously, we'd want this to do some other action other than /dev/null ,
but isn't this the general idea? Is 50 characters in a Date: header
sufficient?
I should think something more like:
:0
* ^Date: ......................(80 or so periods).............
{
INCLUDERC=standard_attack_quarantine_script
}
...would be simpler to understand and extend to other headers that are
supposed to be short (e.g. the Message-ID: header)
--
John Hardin KA7OHZ ICQ#15735746 http://www.wolfenet.com/~jhardin/
jhardin(_at_)wolfenet(_dot_)com pgpk -a
finger://gonzo.wolfenet.com/jhardin
768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
"Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
does quite what I want. I wish Christopher Robin was here."
-- Peter da Silva in a.s.r
-----------------------------------------------------------------------
102 days until Daylight Savings Time ends
_______________________________________________
procmail mailing list
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail