Re: matching one line spam

At 12:28 2007-08-20 -0400, TjL wrote:

I've gotten about 6 spams today which are nothing but a text message
with one line:

http://finance.yahoo.com/q?s=EXMT.PK

I haven't done a lot of matching on body text, is this the correct
recipe to match it?

:0
* B ?? ^http://finance.yahoo.com/q\?s=EXMT\.PK


Looks ok.  Why not toss it in a sandbox?

Have you checked to see if it is plaintext or HTML?  If there are MIME 
escapes in there, you won't match anything.

Arguably, one could just make stock link references spammy.  Coupled with 
other spam indicators, that would probably suffice, without having to 
provide a specific ticker symbol.  This of course only works for spams 
including a URL to a widely used finance site.

---
  Sean B. Straw / Professional Software Engineering

  Procmail disclaimer: <http://www.professional.org/procmail/disclaimer.html>
  Please DO NOT carbon me on list replies.  I'll get my copy from the list.
____________________________________________________________
procmail mailing list   Procmail homepage: http://www.procmail.org/
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail

<Prev in Thread]	Current Thread	[Next in Thread>
matching one line spam, TjL Re: matching one line spam, N.J. Mann Re: matching one line spam, TjL Re: matching one line spam, Professional Software Engineering Re: matching one line spam, N.J. Mann Re: matching one line spam, Professional Software Engineering <=

Previous by Date:	Re: matching one line spam, Professional Software Engineering
Next by Date:	Re: matching one line spam, N.J. Mann
Previous by Thread:	Re: matching one line spam, N.J. Mann
Next by Thread:	SPF misconfiguration thwarts procmail bug report, jidanni
Indexes:	[Date] [Thread] [Top] [All Lists]