https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6860
--- Comment #6 from Helmut Grohne <[email protected]> --- (In reply to comment #4) > Spamassassin is designed for filtering email, not for filtering web forms. > Breaking correct behaviour on webmail to get more aggressive filtering on > forms is not sensible. Maybe I was not clear on this aspect. I am not asking for simply removing HTTP from the regular expression. Fixing one minor bug and thereby introducing numbers of new bugs is not a solution. Instead this logic should be refined to distinguish authenticated web mail from unauthenticated form submission. For instance SquirrelMail explicitly mentions the user submitting a mail. The expression likely needs refinement in the HTTPS direction as well. Mail submitted via an secure web mail service that outputs a technically correct "with HTTPS" would currently not be detected as submission, but as handover instead. -- You are receiving this mail because: You are the assignee for the bug.
