https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7358

John Hardin <jhar...@impsec.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jhar...@impsec.org

--- Comment #9 from John Hardin <jhar...@impsec.org> ---
I was going to say I think that the epilog rule needs to be moved out of the
sandbox and have a hard score applied, but looking at masscheck it looks like
there's a lot of ham that actually has stuff where it should not.

http://ruleqa.spamassassin.org/20161013-r1764625-n/T_TVD_MIME_EPI/detail#all

So perhaps the MIMEHeader plugin should relax its interpretation of the RFC in
the same manner so that malformed MIME does get scanned for content.

Perhaps expose that as a new MIMEHeader rule type (mimeepilogheader perhaps?)
for content in the epilog that could be scored much higher - e.g. a ZIP
attachment in the epilog would be an automatic poison pill, in the proper MIME
block it would not. It is already detecting whether or not the epilog exists...

-- 
You are receiving this mail because:
You are the assignee for the bug.

Reply via email to