On Tue, 22 Jan 2008, Chr. v. Stuckrad wrote:
> On Mon, 21 Jan 2008, John D. Hardin wrote:
>
> > > m,https?://(?:[^\./]+\.)*goo+gle(?:pages)?\.(?:[a-z][a-z][a-z]?(?:\.[a-z][a-z])?)/+.*[?&](?:btni|adurl),i
>
> If I understand that pattern, both the '*' are 'unbounded'???
>
> This might 'break' your spamfilter, if spamassassin gobbles
> up all memory during analysis. Better replace any unbounded
> '*' by reasonable length {0,N}, with N a little more than the
> seen strings.
You're correct, but consider: it's unbounded *within the URI*. If this
was a body or rawbody rule I would *definitely* have bounded them.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
[EMAIL PROTECTED] FALaholic #11174 pgpk -a [EMAIL PROTECTED]
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
To prevent conflict and violence from undermining development,
effective disarmament programmes are vital...
-- the UN, who "doesn't want to confiscate guns"
-----------------------------------------------------------------------
5 days until the 41st anniversary of the loss of Apollo 1
