RE: Something new in my inbox
From: Chris Santerre (csanterre_at_MerchantsOverseas.com)
Date: 09/29/04
- Previous message: David Fore: "FW: Lost mail on security-basics today"
- Next in thread: Rob Hughes: "RE: Something new in my inbox (SA rule works now)"
- Reply: Rob Hughes: "RE: Something new in my inbox (SA rule works now)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "'Rob Hughes'" <rob@robhughes.com>, "'security-basics@securityfocus.com'" <security-basics@securityfocus.com> Date: Wed, 29 Sep 2004 15:31:11 -0400
>-----Original Message-----
>From: Rob Hughes [mailto:rob@robhughes.com]
>Sent: Monday, September 27, 2004 9:35 PM
>To: 'security-basics@securityfocus.com'
>Subject: Something new in my inbox
>
>
>All,
>
>I've noticed an increasing amount of spam that's using what
>looks like a
>broken attempt to mime-encode a url. An example would be
>http://www=2euwantedx=2einfo/rm/news_out=2ehtm. Does anyone recognize
>this encoding type? I need to create some spamassassin rules to pick it
>up. The only place I've seen the "=2e" stuff is in broken outlook
>emails, so any help or pointers to sites with info on this
>encoding will
>be appreciated.
>
Check www.rulesemporium.com
Chris Santerre
System Admin and SARE Ninja
http://www.rulesemporium.com
http://www.surbl.org
'It is not the strongest of the species that survives,
not the most intelligent, but the one most responsive to change.'
Charles Darwin
- Previous message: David Fore: "FW: Lost mail on security-basics today"
- Next in thread: Rob Hughes: "RE: Something new in my inbox (SA rule works now)"
- Reply: Rob Hughes: "RE: Something new in my inbox (SA rule works now)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
