On Sat, 3 Sep 2005, Gary Funck wrote:
Obviously, simply un-encoding the message body and testing against
that, would be simpler and more reliable.
As a follow-up that gets back to my original query on scoring, I notice
that these base64 spams (and many others that sneak through spamassassin)
inevitably address multiple panix accounts--why I don't know. Probably
related to some sort of randomizing formula. Without scoring, isn't there
a simple way to catch any message that has multiple and *distinct* panix
addresses in the header. For example, multiple occurrences of
lnp3(_at_)panix(_dot_)com would not count. Now I can do this easily enough in
perl,
but I am not really knowledgable about how to run a perl script from
within procmail. Ideally, I'd like to process the message and return a
code to procmail indicating that such a condition exists so that the
message can be sent to /dev/null. If anybody could point me to a faq
somewhere that dealt with running perl from within procmail, I'd
appreciate it greatly. With perl, I feel confident that I can handle
anything that spamassassin can't.
____________________________________________________________
procmail mailing list Procmail homepage: http://www.procmail.org/
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail