On Fri, 14 Feb 2014, Adam Katz wrote:
Yes, there is an increased FP risk due to the ability to match different
hex strings (e.g. a list of checksums). That's probably where the
current Rule QA FPs <http://ruleqa.spamassassin.org/?rule=/HEXHASH> come
from.
Good point. Perhaps it should be /\s[a-z]{1,10} rather than /\b[a-z]{1,10}
so that filename extensions don't match.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
...every time I sit down in front of a Windows machine I feel as
if the computer is just a place for the manufacturers to put their
advertising. -- fwadling on Y! SCOX
-----------------------------------------------------------------------
8 days until George Washington's 282nd Birthday
