spamassassin-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Kevin Peuhkurinen <>
Subject Re: Problem with rules to catch inline images
Date Wed, 02 Feb 2005 13:14:25 GMT
Never mind.  It looks like SA 2.64 ignores the entirety of inline binary 
components such that "full" does not even expose them.   As it turns 
out, the spammer has made a number of other errors that I  have been 
able to draft rules for.

Kevin Peuhkurinen wrote:

> Hey folks.  I'm seeing a fair bit of spam getting through with 
> embedded GIF images, a slightly redacted version being pasted into the 
> bottom of this email.  I'm trying to write a rule to catch embedded 
> GIFs, but it just doesn't seem to work.  I've tried the following:
> full                KP_GIF2         /name=".{1,8}\.GIF"/i
> score             KP_GIF2         0.1
> and
> full              KP_GIF3         /Content-Type\: image\/gif\;/i
> score           KP_GIF3         0.1
> Neither of these are firing.   Any ideas?
> Thanks,
> Kevin

View raw message