This is one of the major reasons why initially there were FPs in the bigevil list. (All fixed now.) The script to pull out URIs grabbed the first part and dropped everything after the TLD. So I would get a google.com in my bigevil file. This was driving me crazy. I even started to see a few bigevil poisons :)
Thank goodness that stage of the project is over :P But this is something to keep in mind if a URI-ABL is ever to be tried. I'm surprised google has this. I guess they want to offere _everything_ yahoo does ;) Chris Santerre System Admin and SA Custom Rules Emporium keeper http://www.merchantsoverseas.com/wwwroot/gorilla/sa_rules.htm "A little nonsense now and then, is relished by the wisest men." - Willy Wonka > -----Original Message----- > From: Bill Larson [mailto:[EMAIL PROTECTED] > Sent: Friday, January 09, 2004 9:16 AM > To: [EMAIL PROTECTED] > Cc: Spamassassin-Talk (E-mail) > Subject: [SAtalk] Abused REDIRECTOR URL > > > The following url is a abused unrestricted redirector url. > > http://www.google.com/url?q=http://cardtraffic.com > > Google is better than this. I hope they will ensure that this > is no longer > abusable after today. Spammers find stuff like this and then > it will start > appearing in their urls. The only solution to this is either > a database of > authorized urls for this redirector. Or using a non-squential > code to pull > the url from a database. > > For example http://www.google.com/url?q=1t43sdkjsa could redirect to > http://cardtraffic.com > > would be one good example. If the url isn't in the database then no > redirect. I would have figured your find web team would have > learned from > the spammiest search engine Yahoo with their abused redirectors at > > http://in.rd.yahoo.com/bronchiolar/*http://www.bestvita.biz > http://rd.yahoo.com/frostbite/*http://www.x-discounts.biz/?id= contralateral&at=bolshevism&href=http://www.lacerate.com You also have MSN joining in as a late comer perhaps intending to take over the spam url masking world. http://g.msn.com/1SUenus/CT?http://www.2026.com/F/index.html Maybe they hope to embrace and extend this technique also. We would appreciate a response. Bill Larson Network Administrator Compu-Net Enterprises (931) 920-0043 or (877) 920-1429 ------------------------------------------------------- This SF.net email is sponsored by: Perforce Software. Perforce is the Fast Software Configuration Management System offering advanced branching capabilities and atomic changes on 50+ platforms. Free Eval! http://www.perforce.com/perforce/loadprog.html _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk ------------------------------------------------------- This SF.net email is sponsored by: Perforce Software. Perforce is the Fast Software Configuration Management System offering advanced branching capabilities and atomic changes on 50+ platforms. Free Eval! http://www.perforce.com/perforce/loadprog.html _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
