Hi,
I've been encountering spammers putting whitespace in the
domain area of a url. My rule is not catching them. An
equivalent pattern match in perl does catch them.
The spam email contains urls that look like this:
-------------------------------------------------
<a href="https://www. miwilurt.
com/mKC7AeJAmPT5duDOp6rh_aOmQfdpzd_Ewgbm87h8By6313NSjVfHM10dT8MhiBk0XUB4g9vTUZrRs2U1fJUYCA~~/">click
here</a>
Spamassassin rule looks like this (NO MATCH):
--------------------------------------------
uri NC_SPAM292 /https?\:\/\/(?:\w*\.)*\s*miwilurt\.\s*com\//
score NC_SPAM292 50
Perl check looks like this (MATCH):
-----------------------------------
$str = 'https://www. miwilurt. com/';
if ($str =~ /https?\:\/\/(?:\w*\.)*\s*miwilurt\.\s*com\//) {
print "Match\n";
}
Thanks for your time,
Ted
