All:
A couple of spams just dropped into my inbox at home (where I'm not
fortunate enough to be running SA) and I noticed what appears to be a
new obfuscation trick.
Almost every letter in the message was surrounded by boldface or
underline tags. The message was quite readable when rendered (none of
those misspellings that make it look like the spammer is an illiterate
idiot) yet there were zero complete words in the message body...
So: a couple of questions:
1) is this obfuscation recognized yet? I haven't seen any of these get
trapped at work. If not, here's a heads-up.
2) do the bayes token scanning and sa-learn utility strip HTML tags from
the message body before processing the message? (this is probably a RTFM
- if so, sorry.)
--
John Hardin KA7OHZ
Internal Systems Administrator/Guru voice: (425) 672-1304
Apropos Retail Management Systems, Inc. fax: (425) 672-0192
-----------------------------------------------------------------------
If you smash a computer to bits with a mallet, that appears to count
as encryption in the state of Nevada.
- CRYPTO-GRAM 12/2001
-----------------------------------------------------------------------
