On Thu, 2003-06-19 at 21:55, Jonathan Vanasco wrote: > using html comments? i don't think so. comments would more likely be > in a scipting language and be // /* or # > I can't even count the number of times I've seen <!--need menu ssi here please--> or <!--begin/end someone-or-other's banner code-->. I've had one email with annotated html attached since this thread started.
I had this one come up over and over again, and it is one of the things which pushed me to change from procmail scoring to spamassassin. If you're going to use it, at least try and be a little clever and score on something like... Quantity. 2 comments with nothing else between them is good, more than 10 comments total is good too. Position of comments, between /head and body, after /body, between table and /table but not inside a cell. People writing html by hand just don't type anything in places where text would not be valid, must be a habit thing, I've never seen an html generating program put comments in places where text would not be valid either. Comments in inline mime segments rather than attachments > in any event, if there were between a couple of web designers -- the > addresses would easily be whitelisted > To my way of thinking, a whitelist entry is a step towards a whtielist only system, and therefore a step away from where I want to be. A whitelist entry is a band-aid applied to cancel out the damage from a misbehaving rule. I guess this could be another case like my rot13'd recipient addresses, great rule for 95% of ppl to have, but worse than useless for the other 5%. Essentially on the same subject, I just received one spam with an html comment inserted every 5 characters, which resulted in an unrenderable page of <TA<!-- gfrel -->BLE B<!-- nrwtc -->ORDER<!-- irlls -->=0> tag-inside-tag type stupidity, even the image and web-bug urls had comment tags in, wouldn't render in anything I could find, I'll bet that spamware doesnt stay around long enough to be worth writing a filter :) -- Yorkshire Dave ------------------------------------------------------- This SF.Net email is sponsored by: INetU Attention Web Developers & Consultants: Become An INetU Hosting Partner. Refer Dedicated Servers. We Manage Them. You Get 10% Monthly Commission! INetU Dedicated Managed Hosting http://www.inetu.net/partner/index.php _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
