Hi,
David Funk wrote:
>>> /^(Content-(Type|Disposition)\:|[[:space:]]+).*(file)?name="?.*\.doc"?;?$/
>>>
>>> REJECT
>>>
>>> I believe something like this would work in spamassassin:
>>>
>>> mimeheader DOC_ATTACHED Content-Type =~ /="[^"]+\.(?:docx?|rtf)"/i
>>> scoreDOC_ATTACHED 12.5
>>
Hi all,
Has anyone else seen an increase in PDF invoice spam with just a link
in it? The centurylink IP is now blacklisted, but obviously it wasn't
when this was received. The link contained in the PDF has also already
been disabled, but obviously wasn't when this was received.
I'd really appreci
On Fri, 2016-04-01 at 13:25 -0400, Alex wrote:
> Hi all,
>
> Has anyone else seen an increase in PDF invoice spam with just a link
> in it? The centurylink IP is now blacklisted, but obviously it wasn't
> when this was received. The link contained in the PDF has also
> already
> been disabled, but
> On Apr 1, 2016, at 4:11 PM, Martin Gregorie wrote:
>
> On Fri, 2016-04-01 at 13:25 -0400, Alex wrote:
>> Hi all,
>>
>> Has anyone else seen an increase in PDF invoice spam with just a link
>> in it? The centurylink IP is now blacklisted, but obviously it wasn't
>> when this was received. The
On 3/31/2016 6:33 PM, RW wrote:
On Thu, 31 Mar 2016 17:56:21 -0400
Kevin A. McGrail wrote:
On 3/31/2016 1:34 PM, RW wrote:
They have something like:
Content-Type: text; charset="utf-8"
rather than
Content-Type: text/plain; charset="utf-8"
I think you found a bug in sendmail (or so
Alex,
> Has anyone else seen an increase in PDF invoice spam with just a link
> in it? The centurylink IP is now blacklisted, but obviously it wasn't
> when this was received. The link contained in the PDF has also already
> been disabled, but obviously wasn't when this was received.
>
> I'd reall
