RE: Something new in my inbox

From: Chris Santerre (csanterre_at_MerchantsOverseas.com)
Date: 09/29/04

  • Next message: Jonathan Loh: "Re: login session transcript"
    To: "'Rob Hughes'" <rob@robhughes.com>, "'security-basics@securityfocus.com'" <security-basics@securityfocus.com>
    Date: Wed, 29 Sep 2004 15:31:11 -0400
    
    

    >-----Original Message-----
    >From: Rob Hughes [mailto:rob@robhughes.com]
    >Sent: Monday, September 27, 2004 9:35 PM
    >To: 'security-basics@securityfocus.com'
    >Subject: Something new in my inbox
    >
    >
    >All,
    >
    >I've noticed an increasing amount of spam that's using what
    >looks like a
    >broken attempt to mime-encode a url. An example would be
    >http://www=2euwantedx=2einfo/rm/news_out=2ehtm. Does anyone recognize
    >this encoding type? I need to create some spamassassin rules to pick it
    >up. The only place I've seen the "=2e" stuff is in broken outlook
    >emails, so any help or pointers to sites with info on this
    >encoding will
    >be appreciated.
    >

    Check www.rulesemporium.com

    Chris Santerre
    System Admin and SARE Ninja
    http://www.rulesemporium.com
    http://www.surbl.org
    'It is not the strongest of the species that survives,
    not the most intelligent, but the one most responsive to change.'
    Charles Darwin


  • Next message: Jonathan Loh: "Re: login session transcript"