http://bugzilla.spamassassin.org/show_bug.cgi?id=3261
------- Additional Comments From [EMAIL PROTECTED] 2004-04-12 23:23 -------
Subject: Re: RFE: add support for handling URIs with redirects in URIDNSBL.pm
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
>> tinyurl will have no problem shutting down spam URLs I should think
>I'm not so sure about that.
Well, in that case we'll have a problem ;) We'd have to expand the
URI lookup to support including the path part for certain domains.
(I'd suggest another bug to track that.)
>I'd also rather try to avoid resolution code that is specific to each
>redirector if possible or at least as much as possible.
Well, we have a problem.
1. if we just look for the first URL, spammers could fake it by
doing e.g.
http://www.redir.com/redir.cgi?url=http://www.google.com/&realurl=http://www.spamsite.biz
(where "realurl" is what the redir.cgi uses, and "url" is ignored.)
Could avoid that by splitting out *every* URL-shaped piece of data
found in the.
2. some redirs (Yahoo's drs, for example) don't use CGI params; they
just use e.g.
http://drs.yahoo.com/covey/parr/*http://spammer.address/
note the URL appears after a "*".
However we could search for anything starting with "https?://".
3. alternatively we can make it a config parameter which specifies
exactly what perl s/// ops to run on URLs. e.g.
uri_strip_redirector s/^http:\/\/drs.yahoo.com\/[^\*]+\*(.*)$/$1/g
- --j.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Exmh CVS
iD8DBQFAe4dkQTcbUG5Y7woRAqmuAKC8o7uSy+qyCb68sokbwjffsDmN+ACdE+VA
mbOy/U5GbDCe0jLz5BVNa7o=
=YJml
-----END PGP SIGNATURE-----
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
