Hai! SURBL looks at the importance of the site. Is it lets for example a phishing page on a large isp we will not blacklist the whole isp. Too much collateral damage.
SURBL has also a non RBL product for this called UriQ. Specificly for full uri lookups (eg also hacked and phishing pages) that might be a good match for that problem but isnt available as a free product. More information can be requested offlist. Thanks, Raymond Dijkxhoorn, SURBL. > Op 11 aug. 2015 om 05:02 heeft Sujit Acharyya-choudhury > <s.choudh...@bbk.ac.uk> het volgende geschreven: > > The URIBL_PH_SURBL is actually not very useful. I have checked a real > phishing site with SURBL and it shows clean in SURBL - I think, SURBL only > looks at the part of the domain. > > -----Original Message----- > From: RW [mailto:rwmailli...@googlemail.com] > Sent: 11 August 2015 12:57 > To: users@spamassassin.apache.org > Subject: Re: Phishtank and SpamAssassin > > On Tue, 11 Aug 2015 11:11:56 +0000 > Sujit Acharyya-choudhury wrote: > >> I have seen lot of Phishes submitted in Phishtank.com and yet there >> is no rule to check Phishtank.com. > > There is via URIBL_PH_SURBL. It doesn't score much though.
