On 8/14/25 12:06 PM, Mark London wrote:
Hi - These days, how often do spammers at additional random hidden text? For example, I found a ton of extra text at the bottom of an email, that was hidden by the following HTML:<div style="font-family:Cambria, 'Hoefler Text', 'Liberation Serif', Times, 'Times New Roman', serif; width:1px; line-height:0; overflow:hidden"> Is this a common enough spammer technique, for me to write a rule to test for it? Thanks! - Mark
I tried to write something similar in the past (https://github.com/apache/spamassassin/blob/trunk/rulesrc/sandbox/gbechis/20_html.cf) but I disabled them since they hit lot of commercial newsletters as well. We can write a rule and I can add it to my sandbox for testing, could you share (privately if you prefer) a spam email using this technique ? Thanks Giovanni
OpenPGP_signature.asc
Description: OpenPGP digital signature
