On 2/21/2018 11:48 AM, Anthony Cartmell wrote:
Meanwhile - adding URI lookups (for URIs in the body of the domains)
and/or the option to add 3rd party URI list lookups - is STILL is
missing from MANY widely used anti-spam systems.
If you mean following URLs in messages, you do need to be aware that
this can break one-time login links.
I have come across one local authority in the UK whose spam filter
requests URLs in incoming messages. This meant that the spam filter had
already used the one-time login link so that when the intended user
tried they got an error saying that the link had already been used. Took
a while to work out what was going wrong!
Sorry I wasn't more clear. I was just referring to standard things like
usage of SURBL, URIBL, ivmURI, and Spamhaus's DBL list - where the
domains and IPs that are in the body of the message are collected and
checked against those lists - I didn't mean to imply that such links are
actually followed. Again, sorry I wasn't more clear. I was just pointing
out that if so many systems STILL don't do THAT - or provide an
opportunity for adding additional such lists - then I doubt that we're
going to see widespread adoption by mail systems of a process where, in
real time spam filtering, they check to see where URL shortners lead to,
and then factor that destination into the spam filtering.
--
Rob McEwen
https://www.invaluement.com
+1 (478) 475-9032
