Package: mailscanner Version: 4.41.3-2 An email containing a link like this
<a href="http://www.anydomain.com";>"http://www.anydomain.com";</a> is wrongly treated as phishing fraud causing the following message in the mail body: MailScanner has detected a possible fraud attempt from "www.anydomain.com" claiming to be "www.anydomain.com" By sending several test mails I found out that the error is caused by the quotes and the TLD. <a href="http://www.anydomain.ch";>"http://www.anydomain.ch";</a> <a href="http://www.anydomain.com";>http://www.anydomain.com</a> Are clean, wheareas quotes and TLD .com and at least .info are causing false positives. Or perhaps the quotes and TLD .ch is a false negative, what I do not believe. At least there ist a dissonance. Unfortunately my bank sends its announcements containing a link with quotes and TLD .info to view the message in the browser (if it's not displayed correctly). The false positive changes the body so that the signature becomes invalid. Of course I do not want to put the banks URL into the phishing.safe.sites.conf. I'm using Debian Sarge with Kernel 2.4.27. I don't know if I should notice [EMAIL PROTECTED] or if this is done by the package maintainter. How is this handled? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
