Most of my spam that's getting through at this point is stuff that has a URI with multiple carriage returns in it like this:
<A href="h ttp://eafbfowksugw.org&ghikk2hnvo32i7d21gun%2Eetn eanim bme%2Ecom/"> I know this trick has been discussed. I looked for a bug report, and couldn't find one on this particular thing. I did find a thread in the archives about this, and a couple of rules were suggested, but someone mentioned that at least one of the rules results in a lot of FPs. Is anyone aware of a rule that will catch these that doesn't trigger a lot of FPs? Thanks! Craig
