Unfortunately, people who should know better (e.g. McAfee) do this all
the time.
There'd have to be a huge whitelist of safe URLs to make this workable.
We use MailScanner, which has this sort of phishing detection built in,
flagging suspicious links.
Cheers,
Phil
--
Phil Randal
Network Engineer
Herefordshire Council
Hereford, UK
________________________________
From: Rosenbaum, Larry M. [mailto:[EMAIL PROTECTED]
Sent: 06 December 2007 16:53
To: users@spamassassin.apache.org
Subject: Mismatched URLs revisited
Some time ago (and more than once) there have been discussions
on this list about email containing hyperlinks where the link text is a
URL that doesn't match the URL in the link HREF, and the pros and cons
of testing for and scoring these mismatched links. My management has
raised this issue. My memory is hazy on what the final opinions were -
it seems like this was initially discouraged, but later discussions may
have been less discouraging. Could somebody point me to the threads
where this is discussed? Also, does SpamAssassin currently contain any
rules for this kind of testing, or are there third-party rules that do
this?
Thanks, Larry
