A good rule for catching these is:
rawbody XMBSHREFv2 /(?!\ba?href=.)(?:\b\w{2,}ref=.)/iI score it at 4.0 for our installation, granted doesn't help with the surbl tagging, but it works well enough at catching these. -Rocky On Sun, Mar 06, 2005 at 02:12:57PM -0500, Thomas Bolioli wrote: > As received (relevant snippet): > <a hrefthrivedhref=http://Taiwanese.com href= > > "http://pickup-card.com";>pickup-card.com</a> > > Now here is the SA report on it: > X-Spam-Checker-Version: SpamAssassin 3.0.0 (2004-09-13) on > nova.terranovum.com > X-Spam-Level: * > X-Spam-Status: No, score=1.2 required=4.0 tests=BAYES_50,HTML_20_30, > HTML_FONT_LOW_CONTRAST,HTML_MESSAGE,MIME_HTML_ONLY autolearn=no > version=3.0.0 > > I can post the original email in it's entirety if anyone needs it. > Tom > -- ______________________________________________________________________ what's with today, today? Email: [EMAIL PROTECTED] PGP: http://rocky.mindphone.org/rocky_mindphone.org.gpg
signature.asc
Description: Digital signature
