stephen tan said: >> Instead of the true URL of <img >> src="http://www.1stspots.com/images/business.jpg";>, this spammer >> inserted >> <img >> src="http://www.1stspots.com/images/business.jpg";> >> > > heh, pretty sneaky...the line immediately above is supposed to be "hexed > up" but it was automatically "converted" to normal plaintext here.
Hey yeah, look at that. I pasted in the hex-encoded line, but it has now been converted. > "what" is doing this "conversion"? php? apache? the browser? I don't know. It's curious. The browser certainly *could* do it. >> Apparently SquirrelMail's unsafe image protection doesn't recognize the >> encoded URL as an external URL, so the external images displayed >> immediately. Precisely. If others spammers start to use this technique en masse, our unsafe image protection will become useless. ------------------------------------------------------- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 -- squirrelmail-users mailing list List Address: [EMAIL PROTECTED] List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
![http://www.1stspots.com/images/business.jpg"](http://www.1stspots.com/images/business.jpg"){kind=link}