On Thu, Dec 14, 2006 at 01:31:44AM +0100, vertito wrote:
> this is a repost:
> body MY_harsh_content_RULE18/cid:/is
... and myself and some others have already responded to you. It's not a
useful rule in and of itself, but body isn't going to work. The easiest thing
to do is use sa-upda
On Wed, 13 Dec 2006, vertito wrote:
> I have this rule from local.cf
>
> body MY_harsh_content_RULE18/cid:/is
> describe MY_harsh_content_RULE18Harsh body content
> score MY_harsh_content_RULE18 5.0
>
> but still I am receiving this HTML spam emails that scores lower than 2.0.
>
vertito writes:
> I have this rule from local.cf
>
> body MY_harsh_content_RULE18/cid:/is
To expand on Theo's comments, the reason this is not a good spam sign is
because it'll match any email with an inline image sent by most modern
email clients (definitely Outlook and Thunderbird). Sc
On Wed, Dec 13, 2006 at 05:52:34PM +0100, vertito wrote:
> body MY_harsh_content_RULE18/cid:/is
Ewww!
> The ae above rules doesnt catch the said HTML spam email from yahoo.
of course. body rules look at the rendered text, so all the html markup is
gone.
> And the only signature I can f
