On Fri, Jun 14, 2002 at 07:17:45AM -0400, Bill Becker wrote: | | We may need expanded rules to handle obfuscation. The following | javascript decodes into another obfuscation javasscript. I didn't have | time to persue it further (what the sender is counting on i suppose)... | | | <title>Subscribe for Daily Amateurs for FREE!!!</title> | <script Language="JavaScript">
Seems to me like this is a good enough trigger (especially in text/html). The only case I can think of for real mail containing javascript is in a discussion between developers. Of course, they will use content-type text/plain, and probably won't have the html tags to execute it. | <!-- Support for old browsers that can't handle javascript? Isn't going to be helpful in spam. | ...the body part of this html is the usual stuff about how sorry he is if | i received the message in error. Suuurre. -D -- It took the computational power of three Commodore 64s to fly to the moon. It takes at least a 486 to run Windows 95. Something is wrong here. http://dman.ddts.net/~dman/
msg06338/pgp00000.pgp
Description: PGP signature
