Hello Charles,
Monday, February 16, 2004, 8:38:10 AM, you wrote:
CG> Seeing a new run of spam with:
CG> {a hrefstringhref=http://bogus.url href="http://real.url"}
CG> I think they are hoping to fool a primitive scan for 'href=' but it
CG> just makes for a really unambiguous spamsign. I'm scoring it high.
CG> We'll probably see some variations on this soon, with other things in
CG> front of href.....
CG> rawbody LOC_HTMLBADHREF /href[a-z]*href/i
CG> describe LOC_HTMLBADHREF href(string)href in link
CG> score LOC_HTMLBADHREF 2.5
LOC_HTMLBADHREF -- 433s/0h of 100794 corpus (82099s/18695h) 02/16/04
Bob Menschel
