Hi, I have an idea that I want to discuss with users and developers.
Many phishing mails exploit the bad knowledge of the difference between real url and link anchor text by simple users. So they show atractive link text that points to hiden, unrecognized and evil urls. eg: exe files hiden by photo names, etc. My idea is to have a rewrite engine in spamassassin that can rewrite real url in place of the link anchor text or at least to write it near the anchor text without removing it. In that way people can check if both agree or if the url is known or unknown. It would be another step before the "inevitable click" :p The link functionality is not broken in any case (good or evil link) so genuine links can be followed and evil links can be warned ! In sumary...replace text between <a> and </a> by the href or add the href next to the text with an ascii arrow (-->) or something like that. Cheers !
