http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5393
------- Additional Comments From [EMAIL PROTECTED] 2007-03-29 08:18 ------- (In reply to comment #6) > Are there any examples of common MUAs that will display this stuff? Even > with > non-default but easily available settings a real user might select? > > If so then putting spam there would be an evasion of SA checking. (In reply to comment #6) I discovered this because a sample was reported by an Outlook (2000?) user as a filter miss. Due to policy issues I am not able to share the full original (hence the constructed samples) and while I am unable to stand in front of his machine to verify it, I feel pretty sure that he was not reporting the emptiness of the text and HTML parts as spam. The epilogue-carried payload was a consumer survey come-on, all bad HTML with lots of non-included images. In addition, any MUA that does not support MIME will display whatever epilogue happens to be present. I know it sounds crazy, but people do still use mailx. Really. There is even a politically significant (in geek terms) population of people who use pure text mailers like mutt and mh and intentionally break whatever MIME support is there. I have also confirmed that Palm's VersaMail MUA will display the epilogue of MIME messages. I'd rate my confidence that this was intentional filter evasion at about 80% with a real chance that it was an "OOPS!" (the HTML was clearly built by hand by an amateur) but even so, it seems prudent to look in the epilogue. What could it hurt? ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
