Rosenbaum, Larry M. wrote: > Some time ago (and more than once) there have been discussions on this > list about email containing hyperlinks where the link text is a URL that > doesn’t match the URL in the link HREF, and the pros and cons of testing > for and scoring these mismatched links. My management has raised this > issue. My memory is hazy on what the final opinions were – it seems > like this was initially discouraged, but later discussions may have been > less discouraging. Could somebody point me to the threads where this is > discussed? Also, does SpamAssassin currently contain any rules for this > kind of testing, or are there third-party rules that do this? >
MailScanner does that under the concept of "Phishing Detection". We used it very successfully for several months to catch phishing attempts. Unfortunately we had to turn it off because it also catches multitudes of legit (so I am told) opt in mailings. Several large mass mailing providers (their names escape me now) use redirects in every URL. Rewriting them made the beautifully designed html messages less beautiful and clients objected. I would think if you scored based on mismatched URLs you would tag the same messages incorrectly. Just my experience. DAve -- I've been asking Google for a Veteran's Day logo since 2000, maybe 1999. I was told they finally did a Veteran's Day logo, but none of the links I was given return anything but a normal Google logo. Sad, very sad. Maybe the Chinese Government didn't like it?
