On Friday 27 October 2023 at 17:07:41, John Hardin wrote:
> On Fri, 27 Oct 2023, Antony Stone wrote:
> > On Friday 27 October 2023 at 16:56:36, DEMBLANS Mathieu wrote:
> >> Hi,
> >> Anyone know if there is a way to request an external API throught a
> >> spamsassassin plugin ? It will be to search an URL extracted by SA from
> >> a body of a mail and check if it's referenced with an API request on an
> >> external service (virustotal or other). We receive some mails with URL
> >> inside whose page contains malware. One day, a user will click on it...
> >> If I can junk it before, it would be great.
> >
> > You may want to be cautious about "checking" URLs in this way, because
> > some emails will contain things like "to unsubscribe, click here" or
> > "accept meeting invitation?" and so on.
> >
> > You do not really want some automated system "clicking" on URLs like that
> > and triggering external events either without the user's knowledge (they
> > haven't even seen the email at this stage) or indeed doing something
> > they do not want.
>
> It doesn't sound like it will *visit* the link, just ask some service if
> the like has a reputation.
Fair enough; I still think it's something worth keeping in mind, though,
depending on what the OP meant by "virustotal or other" :)
Antony.
--
The truth is rarely pure, and never simple.
- Oscar Wilde
Please reply to the list;
please *don't* CC me.
