is it visible in the default MUA rendering when you open the message, or do you have to click on the attachment to display it? If the former, we should probably include it in body/rawbody. If the latter, we generally do not.
--j. On Tue, Aug 11, 2009 at 02:24, John Hardin<[email protected]> wrote: > > Folks: > > I just got a 419/fillform spam where the bulk of the message was in a > base64-encoded plain text attachment. This effectively bypassed the many > BODY and RAWBODY tests that would have hit on the text had it been included > in the message body. > > Should plain text attachments be scanned as regular message parts? > > -- > John Hardin KA7OHZ http://www.impsec.org/~jhardin/ > [email protected] FALaholic #11174 pgpk -a [email protected] > key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 > ----------------------------------------------------------------------- > Think Microsoft cares about your needs at all? > "A company wanted to hold off on upgrading Microsoft Office for a > year in order to do other projects. So Microsoft gave a 'free' copy > of the new Office to the CEO -- a copy that of course generated > errors for anyone else in the firm reading his documents. The CEO > got tired of getting the 'please re-send in XX format' so he > ordered other projects put on hold and the Office upgrade to be top > priority." -- Cringely, 4/8/2004 > ----------------------------------------------------------------------- > 5 days until the 64th anniversary of the end of World War II > > -- --j.
