It would be nice, although ultimately unworkable I guess, if SA could be engineered to ignore anything which isn't humanly-visible in an email. i.e. when spammers insert fake PGP signatures in <font color="White"></font> tags to lower their score - SA should ignore it.
The problem with this, I guess, is that not only would it be near impossible to catch every permutation of "hiding content", but you would also potentially miss glaring spam signatures that are hidden.. e.g. <!-- Created by SpamPro (c) 2003 --> Daz > -----Original Message----- > From: Robert Menschel [mailto:[EMAIL PROTECTED] > Sent: 30 June 2003 14:44 > To: [EMAIL PROTECTED] > Subject: [SAtalk] New (to me) spam technique > > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > I haven't seen this one before ... slipped through most > filtering rules. > > The spam has two parts -- spam in HTML, all graphics to avoid any/all > text filtering, and then a text section that appears to be > normal text, > quoted from some source, that has nothing to do with any normal spam > topic. > > The text section caused the spam slip by Bayes, and the only > meaningful > filters tipped were SUBJ_YOUR_DEBT and UNSUB_PAGE. > > Bob Menschel > > -----BEGIN PGP SIGNATURE----- > Version: PGP 8.0 > > iQA/AwUBPwA+rJebK8E4qh1HEQINGgCfcDYOT1+XS97/vYwinw2YbD8R5lIAoMRT > nC0fjrx/YfsbgBxQU+5uFlht > =5NkX > -----END PGP SIGNATURE----- > ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
