One of our newsletters was hit with a false positive. This URL (http://oreilly.useractive.com/courses/sysadmin.php3) triggers FVGT_u_BZ_TLD. I changed the regex to:
uri FVGT_u_BZ_TLD /\.(bz|tc|us|ws)\W/i
which fixes it for this case. I'm not sure if there are undesirable side effects to my change. Anyone have a better way to fix this?
Cheers,
Bob
--
Bob Amen
O'Reilly & Associates, Inc.
http://www.ora.com/
http://www.oreilly.com/------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
